Two thirds of SMEs ‘unprepared for GDPR’

In Industry Comment, Industry News On

Nearly two thirds (62%) of UK small business owners admit to not understanding upcoming data protection legislation, GDPR – and 7% admit to knowing nothing at all about what will shortly become British law, according to a survey by software developer Reckon.

Only 6% of those surveyed said that they understood GDPR very well.

The General Data Protection Regulation (GDPR) is a new set of pan-European regulations designed to strengthen and unify data protection across the continent. Despite Britain leaving the European Union, these regulations are still set to become part of UK law in May 2018. GDPR is designed to provide clear and concise guidelines for sharing and using personal data.

Although action is required by all businesses in order to comply with these rules, just over a third of SMEs in the UK (39%) have taken any steps to prepare their business for its implementation.

Of those that have begun to prepare, only one in 10 (12%) had investigated whether or not their business is affected by GDPR, 7% had prepared or updated the business’ data security breach plan and just 6% had appointed a data protection officer.

Mark Woolley, commercial director for Reckon Software’s Virtual Cabinet, said: “It’s slightly concerning to see that most SMEs here in the UK don’t understand GDPR and how it will affect their business, despite it becoming UK law in less than a year’s time. It’s especially worrying as so much of our business is now managed digitally, placing digital security at the forefront of what we do whether we realise it or not.

“Failure to comply with GDPR can result in fines or punishment. In extreme cases, businesses could see themselves facing a fine that equals between 2-4% of their global revenue – a sum of money no business wants to part with when simple steps could’ve meant that it didn’t need to happen.

“I’d urge SME decision makers to seek the necessary advice to ensure their business is ready, and wherever appropriate, check that the software they’re using makes complying with these rules easy to understand and simple to conduct.”

Reckon has suggested five steps for any SME looking to comply with GDPR, which include:
1.        Considering whether or not the business has new obligations as a data processor and reviewing privacy  notices and policies to check they are GDPR compliant
2.        Preparing or updating the business’ data security breach plan
3.        Appointing a Data Protection Officer
4.        Auditing consents to check data is lawfully processed and setting up an accountability framework to monitor data security procedures
5.        Auditing international transfers to check the business has lawful basis to transfer data abroad

You may also read!

Gaggenau partners with London Festival of Architecture 2021

Gaggenau said it is playing a major role in the London Festival of Architecture’s Showroom Showcase with a specially


Majority of UK businesses concerned over Delta variant delay

With Prime Minister Boris Johnson expected to announce an extension to UK lockdown restrictions this evening, in response to


Hughes Electrical supports Great Yarmouth vaccination centre

People in Great Yarmouth will now be able to watch health promotion messages during the observation period after their


Mobile Sliding Menu

©2021 Innovative Electrical Retailing. Datateam Business Media Limited. All rights reserved.
Registered in England No: 1771113. VAT No: 834 8567 90.
Registered Office: 15a London Road, Maidstone, Kent ME16 8LY