We have been actively working on GDPR for almost a year now, helping clients and contacts navigate the changes that this new data protection law will bring about. Sadly, many have been misled, remain confused or, despite attending lots of seminars, are still lost as to what to do! Is this you?
With GDPR taking effect one week today, there is little time, but there is time to address and formulate a plan to achieve compliance. And although it is about compliance, in reality it is about setting yourself apart from those of your competitors who will simply choose to do nothing.
As consumers, we’re tired; tired of spam, tired of being gamed into receiving marketing that, in fact, we don’t want and tired of companies that have no regard for our values and, indeed, adopting an approach that that might, in fact, lead us to engage more fully with them, if only they could get away from the old-school approach to marketing. Consumers now want engagement; they don’t want to be ‘sold to’ – the goalposts have moved; to a different pitch!
It has been reported this afternoon, that after several days, including a delay due to the company in question not having an available barrister for the hearing, the Information Commissioner (ICO) has the warrant they sought to search the offices of Cambridge Analytica.
The delay highlights the weaknesses, however, of the system designed to protect the personal information and data of individuals – something coming into sharp focus with the onset of the General Data Protection Regulation (GDPR) and the Data Protection Bill, currently moving through Parliament, that will deal with related matters and those at the behest of nation states, that will govern the UK’s data protection regime going forward.
After May, it is hoped that the UK regulator will have stronger powers to better protect the personal information of data subjects, as companies and businesses continue to prepare for the new rules – our own approach and practical workshops around Data Protection Advice have focused on the competitive advantages for business in fully embracing a Privacy by Design approach throughout their organisations – something we suspect that consumers (particularly given the light being shone on these issues as a result of the misuse of Facebook data within this case) will themselves embrace, exercising their stronger and new-found data protection rights.