The 6 requirements of GDPR - are you ready? | Telefónica Tech

Company insights and events

Discover what's happening in our business, including corporate events, reports, press releases and insights.

Leadership team

Our key people

Meet our management, board members and team leaders and find out how they can help you.

Trusted resources and platforms

We work with the best names in the business, ensuring we can provide the highest quality services to our clients.

Working at Telefónica Tech

Join our team

Check out our current career opportunities and our company ethos and benefits.

Accreditations & awards

Industry expertise and recognition

Our extensive accreditations and awards provide our customers with assurance of best practise.

Social responsibility

Supporting colleagues and our communities

We put CSR at the core of our business, to support our colleagues, our customers and our communities and to enhance lives.

Contact our experts

-->

Data-driven digital transformation

Harnessing the power of data and AI to drive growth and delight your customers.

Protect your data & tech

We help prevent cyber attacks to ensure your business remains safe, compliant and efficient.

Digital infrastructure that works for you

We are experts in complex digital transformation projects, so we can help you modernise your business beyond just cloud.

Business Applications

Delivering the digital enterprise

Transforming organisations, step-by-step, with connected intelligent applications and platforms.

Digital Workplace

Frictionless Collaboration, secure systems

We provide systems that make anytime, anywhere working a seamless experience.

Our solutions

-->

Resilient digital solutions for essential services

We provide secure, scalable systems to help public services operate effectively and meet modern expectations.

Connected, secure healthcare solutions

Our systems support safe, compliant, and patient-focused care with seamless data integration.

Digital infrastructure for community safety

We deliver secure, efficient solutions to enhance police response and data protection.

Financial Services & Insurance

Secure, data-led resilience

We support financial institutions with robust, compliant systems to meet a dynamic market's needs.

Enhancing operations with data and AI

We help manufacturers streamline processes, boost efficiency, and drive innovation.

Intelligent solutions for modern retail

Our tools enable personalised customer experiences, operational efficiency, and growth through data.

Industries

-->

Featured Events

Join, learn and connect.

Discover our upcoming events, webinars,
and conferences.

News that matters.

Stay informed with the latest company news
and press releases.

Thought Leadership Articles

Leading the conversation.

Expert insights on navigating industry challenges and innovative solutions.

Technical Blogs

Tech explained.

Comprehensive guides and detailed analysis from our technical experts.

Articles

-->

The 6 requirements of GDPR - are you ready?

Blog | 14 September 2017 | admin

There is a lot of talk about the GDPR and the clock is ticking when it comes to setting your business up for success. What does GDPR mean for your organisation? It is safe to assume that your business will be affected by GDPR and you will have a number of tasks you have to complete before GDPR comes into play on the 25th May 2018.

What do you need to do?

You must consider the handling of all personal data. This personal data must be handled in a transparent, fair and lawful way. In short you must make it clear to people how you are going to use their data, why you need that data and any movement of that data.
All data captured must only be used for the explicit purpose it was captured for and nothing else. When disclosing what the data is going to be used for upfront this has to be specific, explicit and for legitimate purposes.
You must only capture the data you need to carry out the specific purpose you have stated. You are no longer allowed to capture extra data that would be nice to know to build up a profile for example.
You must only hold data for a limited period of time, for as long as was stated upfront or for as long as it takes to complete the stated task.
You must ensure that the personal data you hold can be easily erased or updated. The data must also be accurate and you must take certain steps to ensure its accuracy. If someone asks for their data to be updated or removed this has to be actioned and happen across your entire company so a joined up approach is required.
Your organisation must take steps to ensure the security of the data held. You are responsible for all the data you hold and any breach in that security will be blamed on you. This includes technical security, such as encryption and software but also includes organisational processes, such as company policies and access restrictions etc. This extends wider though to any cloud based system you use, if there is a breach then that will fall under your organisations liability.

In order to get compliant, this will require a fundamental shift to the way many organisations deal with data and at the very least involve a full review of every data, technical or organisational process impacting data.