GTA University Centre is helping businesses prepare for impending legislative changes that will change the way personal data can be stored.
The EU General Data Protection Regulation (EU GDPR) is new legislation that provides a single, harmonised data privacy law for the European Union. UK organisations have until 25 May 2018 to comply with the new law, or potentially face fines of up to 4% of annual turnover or €20 million.
Guernsey will update its own law to reflect these new rules.
‘With the increasing risk of data breaches from cyber attacks, the EU GDPR aims to prevent the loss of personal data by improving data security for all individuals living in EU member states,’ said Kate Sole, programme manager at the GTA.
‘The GTA University Centre is offering a training programme on implementing the EU GDPR and qualifying for the mandatory role of data protection officer under the EU GDPR. The course provides a comprehensive introduction to the requirements of the EU GDPR, and a practical guide to planning, implementing and maintaining an EU GDPR compliance programme. The next scheduled programme dates are in May and October.’
Emma Martins, head of the Channel Island Data Protection regulator, said: ‘The introduction of GDPR will transform the way businesses are able to handle personal data; we are on the verge of huge change in data regulation.
‘I cannot over emphasise the importance of being prepared for this legislation. I particularly want to stress this to the islands’ small to medium sized business communities who may not have access to the legal or compliance expertise and resources available to larger organisations. The new regulations are certainly going to up the game in terms of compliance obligations and there is much greater accountability for data controllers and processors. Wherever personal data is involved, whether that is staff, client or any other information relating to individuals, data protection compliance will have to be considered and built in at the beginning of the process and to a more significant and demonstrable degree.’
Garry Fusellier, head of information assurance at the States of Guernsey, said: ‘In May 2018 the General Data Protection Regulations are introduced and anyone dealing with personal data will have to comply. This practitioner’s course will enable anyone to successfully prepare their business in time for its arrival.
‘It is a well-presented course with first class delivery that will successfully prepare you for the introduction of the GDPR. I recommend any business that deals with personal data to attend.’