We wrote in a previous blog about GDPR and how it effects every business in the UK, as well as any global company holding data on businesses in the EU. There are a lot of people concerned about the General Data Protection Regulations (GDPR) regarding what it means and what you must do to be covered. A lot of these are companies trying to sell solutions that are either directly or loosely related and care must be taken to not buy something that isn’t actually required.
The suggestion here is to start with the Information Commissioner’s Office, the ICO , as they are providing a lot of independent advice and are the people dishing out fines. Their document “ Preparing for the General Data Protection Regulation (GDPR) - 12 steps to take now ” gives a good overview providing an understanding of the areas covered and what needs addressing. To help you to get the ball rolling, this blog is a short summary of those points.