A recent survey conducted by Mazars and McCann Fitzgerald finds that Irish businesses are unprepared for GDPR which is to be enforced on the 25th of May 2018. GDPR involves all businesses of all sizes that posses or manage the use of personal data.
Once GDPR comes into force, businesses could be handed fines of up to €20 million or 4% of the company’s global turnover if they fail to comply with the new law.
With just a little over 6 months to go, the results of the survey suggested that many Irish businesses have not addressed some of the key requirements for GDPR. The survey shows that only 16% have prepared a project to meet compliance requirements. The Mazars/McCann Fitzgerald research also reports that 95% of the companies surveyed think meeting the compliance requirements will be challenging.
Almost 75% believe their existing data protection, privacy notices and methods of consent “will require significant changes” but time is quickly running out. However, a positive trend is that 82% of companies surveyed will have executive or CEO level sponsorship of compliance programmes to meet the requirements.
Speaking about the research Liam McKenna, Partner with Mazars, said “While we’ve seen some improvements from businesses in the previous 12 months, there is still a lot of work to be done so that businesses are ready for GDPR next May. Organisations need as a matter of urgency to review their internal procedures and controls in light of the impending changes, or they are risking severe penalties for non-compliance.”
You can read the full report here.
Xtremepush – How our platform can help ensure your GDPR compliance
We have added a new module to our platform, specifically to cater for Customer Consent Management and Customer Data Management in the broader sense (with GDPR Privacy, Customer Consent, and Security built into to the module by design).
Key GDPR features of our platform include
- Enterprise-Grade security controls (passed multiple bank security tests)
- A Customer Consent module that enables real-time exclusion of Customer data across multiple channels, and an ability to manage Customer Consent not just at an individual level but also at a segment or group level if required.
- The platform has an inbuilt Real-Time Auditing Capability to report on Consent and PII data protection components.
- The right to be forgotten is enabled through the Customer Consent Management Module
- Our Agile Platform (cloud or on-premise ) has been built with data protection and privacy rights at its core by design.
Xtremepush is perfectly positioned to manage your GDPR data protection, consent and right to be forgotten requirements, via a powerful, secure and resilient platform.
To find out more about Xtremepush and we how we help you be GDPR compliant, speak to the Xtremepush team today.