GDPR: Pitfalls and possibilities
John Keyes, Assistant Data Protection Commissioner kicked off the GDPR session with his presentation, A view from the regulator on the eve of GDPR.
Less than 24 hours before GDPR went live, he shared five ways that businesses can reduce their risk of receiving an administrative sanction:
- Evaluate your risk for personal data breaches
- Identify and eliminate common data security threats
- Communicate processing activities to customers and staff in a transparent way
- Effectively deal with subject access requests
- Demonstrate your compliance
John Keyes announced that the Data Protection Act 2018 was just passed and advised that 50% of all complaints they receive arise from ignored data access requests. In closing, the key message he gave to the audience was to communicate the processing of personal data to customers and staff in a clear, transparent way that is easy to access, read and understand.
In the panel discussion that followed, Fiona O’Carroll of Gifts Direct, Jock Jordan of One4all and John Carney of Butler Technologies shared their GDPR journeys with the audience. Jock Jordan talked about how One4all have managed their consent lists and shared that they now have a focused contact list of engaged customers. John Carney advised that Butler Technologies focused strongly on staff awareness so that GDPR is taken on board and implemented across the entire business. Fiona O’Carroll talked about the strong focus in Gifts Direct on staff being aware of and understanding the risks of data breaches.
If you would like more information on GDPR or to discuss your requirements further, please contact Helen at SFA on 01 6051668 or at firstname.lastname@example.org or visit our GDPR section on www.sfa.ie/advice