Our best advice is to act now, don't put off the GDPR and find yourself rushing to action close to the deadline.
Take steps now to be ready for when this is implemented in May, advised Chris Coughlan, head of data protection and privacy at Ashfords. “It’s important to give someone ownership of this,” he said. “Start to try to streamline the data you have – if you find you have data you don’t need just delete it. Start mapping how data flows through your organisation."
He added that businesses should not assume they will not be affected by the changes. “Some firms have said they want to ‘wait and see’ what happens,” he said. “But that could be risky, as we know [Denham] has investigated many types of business, including small firms and charities, in the past.”
The deadline has been set to 25th May 2018, which is only around the corner. And once you start sorting out all of your data, you may have a larger task than you'd originally thought.