GDPR – DATA PROTECTION REGULATION

Is your organisation about to switch from PuL to GDPR? If not, the time is now! Sigma IT Consulting is working continuously to support companies and other organisations preparing for the new data protection regulation GDPR (General Data Protection Regulation).

Handling & storing personal data

The purpose of GDPR is to give people greater control over their personal data. Meaning that anyone who has any kind of customer records, suppliers or other interested parties, must change their routine of handling and storing personal data. This regulation applies no matter if it’s handled in actual folders with information or in a computer system. The start date of this regulation is 25th May 2018 and time is running out.


What does this mean for you?

We can support you with the whole process, from identifying any necessary measures that must be done to adapting the IT system. We have the knowledge to put together presentations to co-workers and customers, create guide lines or e-learnings. All you need to secure that GDPR is followed. Violating this regulation can be very expensive since the sanction fee can be up to 20 million Euro or 4% of the annual global turnover.

WHAT IS GDPR?

On May 25, 2018, the new EU data protection regulation GDPR (General Data Protection Regulation) will replace the Swedish data protection act (PUL). The regulation shall be consistent all over the EU and among other things, will demand strict reporting of personal data incidents (within 72 hours) and allow the Data Inspection Board to judge an administrative penalty of up to 20 million EUR or 4 percent of the organization's turnover.

The General Data Protection Regulation contains large changes and some new regulations. Responsibilities and obligations are clarified and extended and the rights of the registrars are strengthened. There are also major changes for anyone who processes personal data on someone else's behalf. The new law imposes new requirements and obligations on personal data administrators and personal information assistants, thereby affecting your business. In order for you to adapt your business in an efficient and cost-effective way, it’s important that you start considering now what consequences the regulation will have for you. Some examples to consider:

  1. Do you treat personal data legally and transparently?

  2. Do you treat data for limited purposes only?

  3. You do not treat more personal data than necessary?

  4. All of your personal data is correct?

  5. Make sure to sort out of the personal data?

  6. Information Security and Integrated Data Protection?

  7. Do you send information to others, within or outside the EU?


GDPR emergency

Sigma IT Consulting have developed a stepwise method to help our customers secure GDPR. This method consists of a number of steps based on a GAP analysis, which creates an action and activity plan, secure quality of implementation with focus on change management and ensuring that the change and regulation with GDPR will be permanent. If you need support, we have the experts.

circle-image.jpg

Want to know more about GDPR?

Beata Ferenc
beata.ferenc@sigma.se
070-413 70 03