A basic guide to GDPR for small businesses

5th February 2018

1. What is the Data Protection Act about?

 

The main aim of the Act is to promote a high standard of handling personal information to protect the individual’s right to privacy. This Act applies to all companies which hold data about living individuals in paper or electronic format.

The 8 Data Protection principles for good data handling

All data must be…

  1. Fairly and lawfully processed
  2. Processed for specific purposes
  3. Adequate, relevant and not excessive
  4. Accurate and where necessary, kept up to date
  5. Not kept for longer than necessary
  6. Processed in line with the rights of the individual
  7. Kept secure
  8. Not transferred to any countries outside the European Economic Area unless information is adequately protected.

2. What personal information is covered by the Act?

The Act covers information that relates to a living individual. This is information where the individual could be identified. For example: name, address, date of birth etc. The individual has the right to access the information and correct it if the information held is incorrect.

3. What sort of processing is covered by the Act?

 

 

The term ‘processing’ is very broad and covers any action which is carried out on a computer. But in summary will include any of following in personal data terms: recording, holding, using, obtaining, disclosing, erasing or destroying.

4. What to do if you process information about individuals?

 

The Data Protection Authority requires the Information Commissioner to keep a register of:

  • Data controllers who are responsible for processing information
  • Which purpose they will use the personal data for

If you have this information about employees, customers, suppliers, clients or other members of the public. You may need to record this in the register. This is then called a ‘notification’. However not everyone needs to notify, if you process personal information for core business purposes like staff administration, accounting and own marketing.

To check if you need to notify. Please visit the ICO website by using their self-assessment guide.

5. Can individuals ask for their information?

 

Under the Act individuals have the right to get a copy of all information you hold about them on a computer or some manual filing systems. This is better known as a right of subject access.

If you do receive a subject access request. You must respond to it within 40 days. You are also entitled to ask for more information so you can confirm the person’s identity. You can also charge a fee of up to £10 for responding to the subject access request.

6. Why you should comply?

 

Because the new Act is a legal requirement, and it also makes good business sense for the following reasons.

  • Sending mailings to out of date records will annoy customers and waste both time and money
  • Good information handling will increase customer and employee confidence in the business
  • Keeping all information on your data subjects safe and secure will protect you against any claims or damages.

If you fail to notify or renew a notification, when you are not exempt from notifying is a criminal offence and punishable by fines up to £5,000. The Information Commissioners can also take enforcement action to make you bring your processing into line with the eight principles. But failure to further comply is punishable by a further £5,000 fine.

In cases where there is a breach of the DPA which is likely to cause substantial damages or distress and the data controller has failed to take steps to prevent this. The Information Commissioner has the power to impose a monetary penalty of up to £500,000.

7. What you must do

 

You need to make sure that you and all your staff follow the eight data protection principles. These principles are central to DPA and everyone that handles personal information.

You also need to find out whether you need to notify the commissioner of certain details of your processing.

If you would like more information on this or any aspect of Data Protection. Please feel free to get in contact and find out how we can assist with any changes needed within your business, we will be able to provide you with any documents, assistance and resources you need well ahead of the changes.

So why not contact Sally Phillips 07887 877521 or email sally.phillips@wardwilliams.co.uk and find out how Ward Williams can bring your business into line with the new data protection regulations.

Sally Phillips, Managing Director, Ward Williams

Related Posts

  • Apprenticeships… the new (ish) word on the street!

    Ben Geeson, Head of Business Development – Guildford College – Never a week (or sometimes even a day) goes by without a Government spokesperson mentioning the word ‘Apprenticeship’. Over the past 2 or 3 years the accelerator…

    READ MORE
  • CEO’s Column – Louise Punter, Surrey Chambers

    Louise Punter, CEO – Surrey Chambers of Commerce – One of the massive benefits of being in Surrey is the access to two international airports. For obvious reasons the connectivity to the world is really important to a growing business…

    READ MORE
  • The new General Data Protection Regulation (GDPR)

    Peter Quilter, Director of Corporate and Commercial Banking, NatWest Guildford – The media is always full of reports around data breaches and cyber security, but the laws relating to the data your business keeps and how you store and protect it are changing?

    READ MORE
  • New BTL rules mean higher tax bills for many

    Rod Milne, Joint Managing Director of Financial Specialists, HFS Milbourne, and Irena Padol, tax partner, Bessler Hendrie, Chartered Accountants look at the implications of the new tax rules for buy to let investments

    READ MORE
  • The Brand Guide from Liven Creative

    Andrew Myles, Creative Director – Liven creative – To thrive and prosper, brands must evolve. Welcome to Liven Creative’s Brand Guide. To evolve, they must take into account a wide range of internal and external factors.

    READ MORE
  • Rebranding Your Business by Liven Creative

    Andrew Myles, Liven creative – A while back, we wrote an article highlighting when’s a good time to rebrand. Here we expand on the topic, and look more closely at when and how to approach a successful and impactful rebranding.

    READ MORE
  • Recruitment Vs Grow your Own

    Frankie Tierney, Herrington Carmichael Solicitors – Recruiting externally will always be necessary to some degree, but it is worth thinking about how you can use other options. However rigorous a recruitment programme is, you never really…

    READ MORE
  • CEO’s Column – Louise Punter, Surrey Chambers

    Louise Punter, CEO – Surrey Chambers of Commerce – We stand at critical moment for the UK economy, as we begin to prepare for when the country formally leaves the European Union. That makes this autumn’s Budget more vital than most…

    READ MORE
  • Now Is a Good Time to Secure Your Website

    The search giant Google takes web security very seriously and in January its Chrome browser started to flag HTTP websites with insecure password and credit card fields as “Not Secure”. At the beginning of October Google…

    READ MORE
  • Manchester’s Private Rental Market

    The property market in Manchester, the UK’s ‘second city’ and the heart of the Northern Powerhouse, has been booming in recent years as a result of increased investment and regeneration.

    READ MORE
  • CEO’s Column – Louise Punter, Surrey Chambers

    Louise Punter, CEO – Surrey Chambers of Commerce – This week’s column could not be written without significant reference to the Budget delivered by the Chancellor last Wednesday.

    READ MORE
  • Ensure a Smooth Transition When Relocating

    “Nothing in London is certain but expense”, said William Shenstone, the 18th-century poet. Today, that feeling remains mutual. Many businesses are relocating outside of London…

    READ MORE
  • Why integrating communications matters in 2018

    Customers don’t think of brands in terms of digital marketing, advertising, PR or social media, so it makes sense that you shouldn’t either.  Successfully integrating these communication disciplines makes sure your brand messaging is consistent and effective. Integrated communications is not

    READ MORE
  • Carillion Collapse – does it affect you?

    News of the collapse of Carillion is sending shock waves throughout the construction sector as well as other industries. Thousands of suppliers and sub-contractors face the prospect of not being paid for work that has already been completed and invoiced.

    READ MORE
  • The Need for Speed

    Do you sometimes feel you are drowning in communications? A groaning inbox when you come back from leave.  The abundance of social media platforms promising “6 tips for a more focussed sales team” or fascinating video recipes which transform into

    READ MORE
  • GDPR and audit – how are you managing the risk?

    As the deadline for GDPR implementation gets nearer, 25 May 2018, it is becoming more important for businesses to hone in on their responsibilities. The penalties for getting it wrong could be costly, with the maximum fine increasing from £500,000

    READ MORE
  • Talent shortages endangering the UK’s growth

    Smaller and growing businesses are struggling to hire the right talent, according to the most recent survey from Smith & Williamson, the accountancy, tax and investment management group. 66% of businesses are seeking new hires, according to the Enterprise Index

    READ MORE
  • Dividend Allowance reduction to have wide impact

    The tax rules surrounding dividends have changed drastically in recent years. The tax- free Dividend Allowance has dropped from £5,000 to £2,000 per annum from April 2018. This change could have a significant impact on many, whether you own shares

    READ MORE
  • Surgeons & pilots: what do they have in common?

    Training eye surgeons and pilots: what do they have in common? Business and entrepreneurship benefit from a certain degree of risk taking in order to drive innovation because, after all, you learn from taking risks. This is not at all

    READ MORE
  • Moving your business to the cloud

    Should my business move to the cloud or stick with on-premise? It’s a question that has outgrown debate. Cloud is evolving from a market disruptor to an expected approach for traditional and next-generation IT and Telecoms. Those businesses surging into

    READ MORE

Patrons

Executive Partners

  • Menzies logo
  • Socius
  • Royal Holloway
  • RSM
  • Taylor Wimpey
  • Royal Automobile Club
  • Project Five
  • Heathrow
  • Greatest Hits Radio
  • Invotra
  • Invuse logo
  • Surrey County Council Logo

Surrey Chambers of Commerce host great events and networking opportunities for businesses of all sectors and sizes. The knowledge and support they provide is especially valuable to businesses who are growing. I enjoy working with team.

Amanda Shovelton NatWest

Louise and her team at Surrey Chambers have been and continue to be a fantastic resource for our business. They have been hugely helpful and remain a great asset to not only our business, but also the SME community in Surrey and beyond.

James Morris Trafalgar Marquees

Our membership of Surrey Chamber of Commerce has been instrumental in the growth of our business. It's opened many doors and so much of our new business can be tied back to a SCC introduction. We recommend joining the chambers to all of our micro/SME clients looking for funding, networking and brand awareness.

Esther Guy Accounting4contractors Ltd

I attended the Heathrow Summit conference and had the great good fortune of spending some time with Gary Hayes & Andy Willmott who were a real credit to the Chamber. If anyone is wondering whether being a Chamber member could help their business know this, they helped me with their knowledge of local contacts and we're in Cornwall! Thanks for your time fellas and keep up the good work!

Spencer Hassell ADi Access

ramsac have been proud members of Surrey Chambers for over 20 years. During that time we’ve received support in the form of training and business community links, we’ve expanded our local network and we’ve had opportunities to promote our SME IT services to the wider Chamber membership by supporting and sponsoring events and providing keynote speakers to talk about IT and employer issues.

Dan May ramsac

Membership of the Surrey Chambers keeps our finger on the pulse of what matters to business and it grounds us in reality. The variety of businesses we get to meet and hear from through the Surrey Chambers events (previously face to face and now online) enriches our knowledge and broadens our perspectives and ensures we continue to shape our services and offerings to meet our client’s needs.

Jarmila Yu YUnique Marketing

Surrey Business School is proud of its longstanding partnership with Surrey Chambers of Commerce. Our relationship with Chambers is at the heart of the connectivity we have with the local business community and enables us to forge the strongest of links to the benefit of businesses, our students and the research community.

Adrian Shanks Surrey Business School

Surrey Chamber of Commerce is in the business of working with businesses, consistently delivering quality events and a great go to for advice

Harvey Ockrim Satteliet UK

If you are looking for an organisation with a membership of like-minded business owners sharing common interests with a willingness to support colleagues, then in Surrey Chambers you have found what you are looking for. With caveat that yes, you have to put the work in to attend the meetings, thoroughly recommended.

Ges Ray Presentation Excellence

I was recently at the Surrey Chambers Power Breakfast at Sandown Park Racecourse what a fantastic venue and breakfast. There was a good group of people, all with ‘can do’ attitudes as well as an engaging speaker. I obtained a number of new contacts and received further networking opportunities. I also felt that I had come from the breakfast having learnt something new which is a big bonus!

Andrew Dennis Coast to Capital

Newsletter Sign Up

Privacy Policy | Terms & Conditions

© 2017 to 2024 Surrey Chambers | All rights reserved

Unit 14a, Monument Way East, Woking, GU21 5LY

t 01483 735540 f 01483 756754

CONTACT US

Surrey Chambers of Commerce is a company registered in England and Wales with company number 3027072 & VAT registration number 644468124.