Kamazoy Offers GDPR Guidance
Nationwide technology specialist, Kamazoy Virtual IT Department, is urging businesses not to be complacent, but to actively prepare for the introduction of GDPR (The General Data Protection Regulation), which comes into force in less than four months.
Kamazoy Director, Daniel Dainty, said: “On the 25th May 2018 this new European privacy regulation will come into effect and it will apply to all companies selling to and storing personal data on European citizens. GDPR will change how we both use and store data, with no distinction between an individual’s personal information, be it private, public or information about work roles.
“Under GDPR, individuals will have the right to access information held, to be informed when data is being gathered, and now significantly an individual’s consent must be given and not, as is in many cases currently, simply implied. The business implications of GDPR are that the consumer is in the driving seat, with the task of compliance falling on the shoulders of businesses and organizations holding data, meaning they need to change how they gather, store and use personal information. Specific areas will change such as abolishing the £10 fee for subject access requests and the 72-hour breach notification period currently enforced by the Information Commissioner’s Office.”
Kamazoy are experts at working with companies to review, develop and implement infrastructure safeguards to ensure potential breaches are contained, and where necessary, installing appropriate security measures to guard against data breaches. Their message to businesses large and small is if you hold personally-identifiable data, such as personal email addresses as opposed to simply general business contact addresses, you should be able to demonstrate that you are holding it appropriately.
Kamazoy is known for its open and fresh approach to all things IT, building a reputation within the industry as ‘the’ IT business to go to, with their service offer covering managed solutions, hosted exchange email, online backup, education and the everyday IT support needed by some of the world’s largest and smallest organisations looking for technical resources, service and support.
Added Daniel: “To be GDPR compliant you need to be able to demonstrate that there is a good reason for you to have data on record, and significantly that you are holding it securely, with the correct level of malware and security systems and procedures in place, basically we’re talking ‘best practice’.
“Businesses should check with their suppliers as outsourcing doesn’t exempt you from being liable, you still need to make sure you have the right security measures to guarantee you and your data is protected.”
Image details L to R: Kamazoy Director, Daniel Dainty.