General Data Protection Regulation

GDPR - What it is and what impact it has on you

In May 2018 the new EU privacy regulations called the “General Data Protection Regulation” (GDPR) comes into effect. The new Regulations imposes strict requirements on the way firms collect store and manage personal data. The new regulations provide EU citizens with greater control over their personal data and aims to ensure that the data is securely protected across the EU whether the data processing takes place in the EU or not. Personal data can be a name, address, date of birth, medical information, personal interests, any unique identifiers, digital footprints etc.


Consent to allow collection and storage of data - Data Protection - Access to their personal data - Correct personal data - Not to be identified - Data portability - Be forgotten - Have data deleted.

GDPR impacts on all companies big and small who use personal data.

When considering your data risks, you should consider the GDPR rules that apply to your business, your GDPR system impacts and any legal impacts in relation to how you handle personal data.

You are required to have defined processes to manage your data obligations. GDPR will have a big impact on your business and potentially impact on marketing, sales, customer service, IT and all supporting Corporate Policies


HCB has already conducted a Data Protection Impact Assessment (DPIA). We have appointed a Data Protection Officer (DPO) and conducted staff training. We are currently updating our processes and IT infrastructure and Corporate policies. We are liaising with clients and suppliers to ensure that they will also be compliant by the deadline. We will be fully compliant with the new Regulations by the end of April 2018 (in advance of the May 2018 deadline).