Most SME’s still do not realise the impact of GDPR and the Privacy Act 2018 upon their business.
The headlines are;
Any of which might cause your organisation to fold.
If a company commits and it can be proved the breach occurred with the Director’s consent, or on account of their negligence, the Director may be guilty of an offence as well as the company. The ICO can levy a fine up to £500,000 against the Director personally.
Yet in our recent survey the majority of SME’s had not even registered with the ICO and paid their fee. Data privacy in the SME sector is a mess. Few companies possess the skills to form a Privacy Program and where they do, in house, it is difficult to maintain independence.
Privacy should not rely on meeting compliance alone. Your organisation should have a privacy vision that understands the effect that good policy and transparency engenders in your data subjects as well as generally enhancing your reputation.
IT Ambulance are known for the quality of their managed information security programs and because we take our commitment to Privacy so seriously and this is so entangled with data security, we have taken steps to have Certified Information Privacy Manager skills available to our customers.
We have been helping customers build Privacy into their data policies before GDPR compliance was even an agenda item.
Book a consultation today.