Observing at the outcomes of the latest analysis carried out by the United Kingdom Government, it appears that the business people of the nation as a whole are not well prepared for the launch of the General Data Protection Regulation (GDPR), on 25 May 2018.
The most worrying fact is that just 38% of organizations and business interrogated were actually conscious of the application of GDPR, and its consequences. Even though, the number significantly rose, to 80%, for bigger businesses and companies, with over 250 workers.
Nevertheless, that still implies that 20% of big organizations and businesses in the United Kingdom are putting themselves at the threat of getting penalties of up to 4% of annual turnover or, 20 million euros, whichever is more if they are found to be non-compliant with GDPR rules. Smaller companies might be badly affected by even small penalties, and they are less well-cognizant; just 49% of small companies and 31% of micro companies said that they were GDPR conscious.
What about those that are conscious?
The situation isn’t a great deal better when you look at organizations and businesses that said they are conscious of GDPR. Less than half of the organizations and businesses interrogated, and conscious stated that they had made any security or procedural changes as a consequence of GDPR conditions. Even given the fact that the existing Data Safety Law is set up, it appears that modifications generated by GDPR, like the entitlement to data movability and changes to the System Access Request (SAR) procedure, would require some practical modification.
It’s difficult to describe why UK organizations and businesses appear to be so ill- prepared for the launch of GDPR. It might be that Brexit has made them think that it’s less vital to be conscious of the implications or abide by them. This isn’t the case as the United Kingdom is still a member of the European Union presently.
Even if it exits the EU, any organization or business handling the confidential data of European Union residents will still be expected to abide by, and it’s expected that GDPR conditions will continue within UK law. The reality is that UK organizations and businesses should increase their arrangements, or face the penalties of non-compliance with GDPR.