On the 25th May 2018 the new General Data Protection Regulations (GDPR) come in to force and there has been a lot of talk and confusion about just what exactly must be done to become compliant. GDPR is a more powerful, more encompassing and long overdue update to the 1998 Data Protection Act.
Also coming in to force slightly earlier in May 2018 is the lesser known Network and Information Systems Directive (NIS) that businesses providing essential services will need to comply with. Generally NIS will apply to companies who operate in the energy, transport and health care sectors.
If your business accepts credit card payments or stores credit card information then you must be PCI DSS compliant too. These are just three of the regulations that todays businesses have to comply with, there are even more regulations and directives to adhere to if you operate internationally. We can advise on, document and implement what your business needs to be compliant.