I had the pleasure recently of chairing a seminar run by the BIFM People Management Special Interest Group, focusing on the hot topic of data protection at work.
We have become increasingly accustomed to media coverage of major data security breaches and their impact on the businesses and people affected by them. But with the advent of new European legislation – the so-called General Data Protection Regulation, or GDPR – whatever role you play in your organisation, you’re going to need to know about it and prepare for it.
Most of the people I’ve spoken with are already up to speed on the key points of the new legislation, the biggest change to data protection law and practice for 20 years. They knew the potential for increased penalties when getting it wrong in future, which could lead to fines of up to €20 million or 4% of global annual turnover for the preceding financial year, whichever is the higher.
Where they are sometimes less clear is on the practicalities of the way they manage data, and what the changes they might need to make in order to comply with the new requirements.
The two presenters were Bernard Crouch, Director of Acumen FM; and John Macaulay, a director at Greenwoods Solicitors LLP.