What is the GDPR?

The General Data Protection Regulation (GDPR) is a new regulation that requires all organisations that collect, store and handle the personal data of European citizens to fully comply with its requirements. It places responsibility on businesses and ensures they are accountable for protecting the data of their customers and employees. GDPR compliance is a must from May 2018 going forward.

If you process EU citizen data and are not GDPR compliant by 25th May 2018, you are liable to be fined up to €20m or 4% global turnover.


Does the GDPR apply to me?

If your business aligns to one of the below, you will be need to comply with the General Data Protection Regulation:

You use automated means to process data

If your business practices involve processing personal data via automated means or through a filing system, you must adhere to the new regulations. Collecting data through newsletter sign ups are an example of this.

Your business is based in the United Kingdom

Where your business is established within the EU and controls or processes the personal data of EU citizens, the GDPR will be applied to you. The UK government has committed to adhering to the new regulations despite Brexit.

Your business is established outside of the EU

Even if your business is based outside of the EU, you are still required to adhere to the GDPR. Businesses around the world that control or process the personal data of EU data subjects, must adhere to the regulation.

We can help ease the journey

There’s a lot more to it than you may think.

IT plays a vital role in the journey to GDPR compliance for all businesses. At Support Tree, we provide the services you need to support your compliancy and regulatory requirements, including IT auditing for GDPR. Our qualified engineers will assess your business’ current data protection and privacy management by conducting an on-site review, allowing us to find where there are areas for improvement. From this, we will provide a detailed compliance report, from which you can identify the key barriers in your systems preventing your business from becoming GDPR compliant.

GDPR guide

Not sure where to being?

We’ve got you covered.

We’ve created a high-level whitepaper, taking you through the main components of GDPR including a one minute guide to all you need to know, the 12 steps to compliance and why it’s not all doom and gloom.

If you’re unsure of what you need to know, we’ve included a Facts and Question section of our most frequently asked questions.

Data protection for the EU

What SMEs should know about the GDPR & GDPR compliance

The deadline was Friday 25th May 2018.

In our quick guide to the new regulations, we explore that the GDPR means for SMEs – because yes, it affects small businesses too. Almost half of all SMEs in the UK will experience a cyber security breach, and 22% aren’t even sure ‘where to start’.  Businesses must have the correct processes to fully protect the personal data they hold.

read the full blog