Peter Loomes, a leading expert in the cyber security field warns that businesses aren’t ready for the introduction of the General Data Protection Regulation next year.
In Worcestershire for instance eight out of ten businesses were not aware of how the General Data Protection Regulation would affect their business. Of those, 35 per cent didn’t know when they would start preparations.
The General Data Protection Regulation (GDPR), which replaces the existing UK Data Protection Act 1998 (DPA), will see businesses having to adhere to stricter data protection rules. Some of these include: maintaining records of personal data and taking on significantly more legal liability if the company is found responsible for a breach.
Peter Loomes, Director of Sandettie in Worcester says that businesses and public sector organisations are not aware of what the regulation will mean for personal data. Moreover, he states that even if a business is currently compliant with the Data Protection Act – preparing for the GDPR is no small task.
It's expected that the current DPA regulation will move away from pure policies and procedures to a risk management approach with the implementation of the GDPR. All businesses regardless of size will need to undertake a risk assessment of the data they hold, before it's too late.
Cllr Ken Pollock, Cabinet Member with Responsibility for Economy and Infrastructure said: "The Malvern Hills Science Park has long put Worcestershire on the map for its expertise in cyber security and IT. Businesses should take heed of the warning that the GDPR will be implemented next year. The training is available from Sandettie and a number of experts and I would urge businesses to get on board as soon as they can."