The General Data Protection Regulation (RGPD) came into force in 2016. It is true that, despite the time it has been in place, many small and medium-sized companies still do not comply with it due to lack of financial capacity to delegate it. in experts. Spain is one of the countries with the worst compliance rate, with only 21% of companies.
The figures for non-compliance can be up to 20 million euros for a large company. Small businesses would not be penalized with such an amount, but it is true that the fine could be detrimental to the business.
What to do to comply with the regulation?
The ideal is to go to professionals, both for advice and to ensure and take care of the correct treatment of the data. Some tips to comply with data protection are:
- Appoint a Data Protection Delegate: He can be an employee of the company or subcontract a person to ensure compliance with the Regulation, supervise the implementation and application of protection policies, and act as an interlocutor between the company and the authorities. .
- Carry out an audit: It consists of knowing in depth the data management of the company, to later adapt the RGPD to the needs of the company.
- Advice: Each company requires a different design and procedure to comply with the legislation.
- Data management: Many SMEs need help with data protection and rely on companies specialized in this area, in order to comply with the law.
- Annual review: The review is basic so as not to forget any aspect of the regulation that could have serious consequences for the company. This way you will always be up to date.
- RGPD Maintenance: Changes in companies may also lead to changes in the treatment of information.
- Up-to- date information: It is important to be up to date on any new regulations, in order to adapt and continue to comply with the regulations.