The art of the perfect fit

Are you ready for the GDPR?

Posted by D.R.A.W in News · May 2018

The new General Data Protection Regulation (GDPR) comes into effect on the 25th May 2018 - have you taken the necessary steps to comply?

The new General Data Protection Regulation (GDPR) affects all businesses, in varying degrees, based on the sorts of information you collect about customers, clients and employees, and whether you have obtained permission to hold this information.

To try and decipher the legislation and what your responsibilities are can be a bit of a mine field, especially with the inevitable grey areas in new legislation. You need to comply, whilst remaining commercial in your decision-making about how to implement measures that protect your business.

Key points to note are that you must obtain permission from all of your contacts, before 25th May, to continue to contact them in future and record their preferences. If a contact wishes to be removed from your database, you must comply with this.

We have put together a few guidelines of steps you can take to achieve compliance, as recommended by the ICO (Information Commissioners Office) going forward:

  • Take a look at the 12 steps to take right now on the ICO’s website
  • You may also want to look at the guide covering all aspects of GDPR
  • It is also important to determine if you are holding data based on ‘legitimate interest’. The ICO has also created some guidance on how to conduct legitimate interest assessments and how to consider if legitimate interest can be used as the basis of holding and processing data. It is useful to conduct a test for each type of data processing activity that is carried out, as follows:
    • Identify the legitimate interest – what is the purpose of processing the data?
    • Carry out the necessity test – is the data processing necessary to achieve organisational objectives?
    • Carry out a balancing test – is processing the data likely to negatively impact the individuals rights?
    • Organisational risk – are there implications to your business, whether legal, operational or reputational?

 

Please note, this article is for information purposes, and we suggest for any specific advice required relating to your business, that you seek the appropriate legal guidance.

Notes from DRAW · 02.05.2018

Read More

Working in the Arts: Craig Burnett

This week for our Working in the Arts profile, we talk to Craig Burnett. So, where do you work?  Pilar Corrias, London What is your job title?   Director of Exhibitions What time do you wake up? What are you usual working hours? I wake up at 6:30 – that’s when my alarm goes off at least, on…

Working in the Arts: Tereze Lujane

This week for our ongoing Working in the Arts profile, we talk to Tereze Lujane who is EA to the CEO of Serpentine. So, where do you work? I recently joined Serpentine, based in the heart of Kensington Park. With two galleries and a Pavilion, it is the best office I could have asked for. What is…

Working in the Arts: Reece Prince Watson

This week for our ongoing Working in the Arts profile, we talk to Reece Prince Watson, freelance Communications & Brand Consultant. So, where do you work?  I’m a communications and brand consultant, working independently with a diverse roster of visionary brands and talents across the…

DRAW as Changemakers: Our continued EDI Education and Training

To continue our journey to improve equality, diversity and inclusion (EDI) we recently partnered with Jacqui Barrett at Wider Thinking and the DRAW team all completed the Wider Thinking learning plan. Wider Thinking can help businesses improve and grow by embedding social responsibility into the…