My whole business is run on paper-based records, why should I care about GDPR?
Published on: 9th May 2018
By PYXI GDPR Team
PYXI appreciate that many small businesses run their whole business in a paper-based fashion - imagine the scene of folders full of paper documents occupying multiple shelves.
The questions that PYXI would pose are:
- How do you respond to Subject Access Requests in a timely fashion?
- What happens if someone steals the folder containing the personal data of all your customers - this is a Data Breach situation, how do you deal with it?
If you are not in a favourable position to deal with the above 2 scenarios you could be putting yourself at risk of a visit from the supervisory authority, who may uncover additional compliance issues related to GDPR which could adversely affect the reputation of your brand.
We advise that you think very clearly about these scenarios and build it into your individual compliance plan for GDPR.
PYXI GDPR Team: 9th May 2018 15:03:00
Subscribe to our
Weekly GDPR Newsletter.
It's full of really useful updates
for UK small businesses.
Equifax fined £500,000 for failing to protect the personal information of up to 15 million UK citizens during a cyber attack in 2017
The ICO’s probe, carried out in parallel with the Financial Conduct Authority, revealed multiple failures at the credit reference agency which led to personal information being retained for longer than necessary and vulnerable to unauthorised acces... click to read more