The General Data Protection Regulation (GDPR) becomes effective from 25 May 2018. The GDPR will replace the existing Data Protection Acts (1988 and 2003) placing substantial new responsibilities on businesses that process personal data as well as introducing tougher penalties for non compliance.

The Office of the Data Protection Commissioner recently published the results of a survey which found low levels of awareness and preparedness for compliance with the new GDPR regulation among small and medium enterprises. The survey found that a staggering 70% of businesses are unaware of what date the GDPR become effective. In addition, over one quarter of businesses do now know when they will begin preparations for the introduction of the new regulation.

Bearing this in mind, we would urge our members to commence preparations as soon as possible for the new regulation as there are significant changes being introduced. The Data Protection Commission have launched GDPRandyou.ie which contains useful guidance materials and resources which will assist your business. In addition, the SFA have been involved, through the GDPR Taskforce, in delivering a series of short guides to help raise awareness and understanding of the GDPR. These guides can be accessed here.

If you have queries on this area you can contact Ciara McGuone, SFA Executive, on 01 605 1668 or ciara.mcguone@sfa.ie .