An article from: Chiara Rustici via Computer Weekly, March 2016
“Once you think about how wide-ranging the demands of this regulation are on the processes and data architectures of the IT function, you will probably start negotiating with the CFO or the CEO for a budget to resource the GDPR-compliance programme.
Just as you feel you are making good progress – and faring much better than the 44% of IT professionals in a recent poll indicating they were unaware or only vaguely aware of the new rules – you are hit with this line: “…We don’t have operations, subcontractors or subsidiaries in the EU. In the event of Brexit, we won’t have anything to do with EU data protection. All our data is held on servers in the UK. We’ll cross that bridge when we get there”
If so, stick to your guns – GDPR is going to affect UK businesses offering any type of service to the EU market, regardless of whether your business stores or processes data on EU soil, and whether the UK stays in the EU or not.” – Chiara Rustici via Computer Weekly, March 2016
The high court ruling earlier this month and the appeal set for December have added a new layer of complexity to Brexit. In such varying circumstances it can be easy to simply step back and wait for the confusion to blow over. Sadly that’s not an option here.
This great article from Chiara Rustici empathises that convincing those who hold the purse strings can be a challenge, particularly when very little is certain. Nevertheless the clock is ticking and the sooner you can start implementing a plan of action, the better off you’ll be in the long term.