[1andrew1]

Quote:

Originally Posted by OLD BOY

Well, I can read the ico website as well as anyone, and if People Management believe there is a problem for small organisations, people will be advised to take this seriously.

https://www.peoplemanagement.co.uk/n...nto-GDPR-abyss


Ann Bevitt, partner at law firm Cooley, said a reported lack of preparation for the GDPR could be the result of smaller businesses that have been outside previous EU directives on data protection. “There are a lot of smaller companies and tech start-ups that are not caught by existing EU law, but will be caught by the GDPR,” she told People Management.

“Within that population, the vast majority are just waking up to it, purely because they did not anticipate that the GDPR would apply to them. Those small companies will also have to grapple with a steeper learning curve than larger organisations, because they do not have that base of directive compliance to build on, so will have to get to grips with the terminology and legal bases.”

According to the report, companies could be forced to spend eight hours a day, or 172 hours a month, on data searches after the implementation of the GDPR, with more than one in three (39 per cent) UK-based directors saying they were concerned about their ability to be compliant. More than one in 10 (13 per cent) UK companies said they were not confident they knew where their data was housed, while 12 per cent reported that they had not accounted for all databases.

For fear of pointing out the obvious, none of that magazine's reproduction of a law firm's press release justifies the way that you are expensivley gold plating GDPR for a small club.