GDPR - will it make a difference?
We live in a world that has been driven in the last 20 years by globalism and more recently a world that seems to be getting taken over by an exploding social media scene (although could this be coming to an end with the negatives that come with it such as the Facebook/Cambridge Analyticagate, cyber bullying and the black web?)
One of the main things that makes me feel uncomfortable about this side of things is the way that we have the potential to be so manipulated. The personal data companies hold on us - because we’ve entered into agreements with them, whether it’s our bank, insurance company, retailer or a social media platform – means that we’re not only prone to being bombarded by nuisance phone calls and advertisements, but we’re also unsure where our personal details are turning up and how they are being used.
I’ve just finished a stint at Royal Sun Alliance (RSA), leading on their comms and awareness campaign for the incoming (25th May) General Data Protection Regulation (GDPR) to help colleagues, customers and third parties understand what is means at RSA, how the company is getting GDPR ready and what it means for them.
GDPR is a stronger regulation that takes over from the existing Data Protection Act and means that companies will potentially face larger fines if they don’t comply. There is also a reputational risk at stake. Simply put, under GDPR companies need to know where the personal data they hold and process is stored; how long they keep it for; who they share it with and ensure that company is GDPR compliant as well; and the personal information must be kept secure and any data breaches reported in a timely manner and where appropriate the regulator and customer informed.
GDPR can only help us all as customers and consumers. The companies that hold our personal data will now be held more accountable and must be more transparent. For the customer/consumer, we have enhanced rights which we can exercise with any business that holds our personal data, and which they must comply with or face the wrath of the regulator, the ICO.
This new regulation will enable us as customers and consumers to take more control of our personal data, but I wonder what else would really change. When I spoke to a colleague working on the GDPR programme at RSA and asked if he thought this would make a difference to the nuisance phones calls that we all frustratingly get, he felt there wouldn’t be too much difference. Let’s see what happens from 25th May onwards….watch this space……
I've added some useful links if you're interested in finding out more:
For customers and consumers: Your rights.
For organisations: GDPR resources + 12 step guide to get business ready
For small businesses: GDPR small business support