GDPR is a topic that has been gradually moving up the corporate agenda for most UK and European organisations over the past two years or so. The EU’s General Data Protection Regulation (GDPR) aims to better protect personal data, and is the most significant change to data protection law in the EU for a generation.
Now the deadline of May 2018 is becoming closer, many organisations are finally starting to take their GDPR responsibilities more seriously. Failure to comply could be catastrophic, with fines of up to €20,000,000 or 4% of annual global turnover, whichever is greater.
But what does GDPR mean for organisations in the public sector? That’s what we’ll be discussing in our role as sponsor of the forthcoming GDPR in the Public Sector Conference. The event take place on 8 November at the home of Manchester United Football Club, Old Trafford, and will attract delegates working in senior roles in governance, ICT, HR, Marketing, Data and much more besides.
GDPR in the public sector
GDPR will look to improve consumer confidence in organisations that hold their personal data by reinforcing their privacy and security rights, and also to simplify the free flow of personal data in the EU.
The onus to do so is on the data controllers, or the organisation that will be using and manipulating the data. As the UK’s public sector holds everything from tax records to health data, the organisations that comprise the public sector must be in line with the new legislation.
Public bodies are now also legally required by law to appoint data protection officers and put measures in place to detect and report data breaches. This is a major challenge, especially for organisations that are not used to adhering to such stringent compliance regulations.
BoardPacks and addressing GDPR
The conference in Manchester is aiming to help address GDPR, and is looking to provide attendees with outcomes such as:
• What are the broad implications of the General Data Protection Regulation and how will it affect different public sector organisations?
• How can public sector organisations make sure they are fully prepared for the introduction of GDPR?
• What are the essential steps for drafting a comprehensive GDPR project plan?
• What technology and project management tools are available to ease the transition to GDPR compliance?
eShare’s online board portal BoardPacks is certainly a tool that can play a significant role in public sector organisations achieving GDPR compliance. The best place to start with GDPR is improving transparency into senior level decision making, which is something BoardPacks does for private and public sector organisations all over the world.
Improving transparency will put in place the building blocks for addressing GDPR and other compliance via a governance operating model, a model with many elements connected, rationalised, and organised to provide the consistent guidance and incentives that executives, risk managers, and data protection officers require.
GDPR is a challenge for any organisation, but is perhaps even more so for public sector bodies, which need as much assistance as possible. We are delighted to be sponsoring the GDPR in the Public Sector Conference and would love to see you there.