Since the introduction of GDPR safe practice in 2018, figures demonstrate that more than 37,700 data protection concerns have been raised to the ICO, by members of the public.

There has certainly been a cultural shift by both businesses and individuals in their approach to data protection and the manner in which data should be respected; however some critics of GDPR safe practice would challenge that at this point in time, the implementation has not gone far enough.

During recent months GDPR safe practice legislation has flagged up some high profile cases whereby the likes of British Airways and hotel group Marriott had to pay out nearly £300 million in GDPR fines.  Whilst both businesses have taken clear action to improve their protection of customer data, it has raised concern that companies are still under estimating their level of responsibility in terms of data protection.

For those who have felt as though they have met compliance, “92% said that compliance gave them a competitive edge” according to a recent study by the Capgemini Research Institute; “enabling them to improve customer trust, customer satisfaction and brand image, leading to higher revenues”.

Changing the mindset towards GDPR safe practice

So maybe it is about time that the approach and dialogue towards GDPR safe practice legislation now needs to change! Up to now, often GDPR is associated with draining resources on businesses, under staffed tasks and procedures, plus the impending stress of meeting hefty fines.  In contrast if businesses could promote GDPR safe practice through the forms of data protection and privacy regulation as an opportunity, it could give them a competitive advantage for the future.

Either way it is still certain that clearer guidance is required, so that companies can demonstrate good GDPR performance and protect their customer’s data effectively enough.

Is your business fully GDPR compliant? Crendon Insurance Ltd supports companies to assess their responsibility towards data protection and implement GDPR safe practice within their business, by assessing data risk and suggesting where improvements can be made. Don’t forget as business owner or manager you will need to take full responsibility of your GDPR safe practice strategy to prevent the penalty of a hefty fine.

Blogs used to write this article: