On the 25th May 2018 the new General Data Protection Regulation (GDPR) law comes into effect. This is a European wide update of current data protection rules and will continue to apply after Brexit so it is important that anyone who handles data be compliant with it.
If you handle or store any personal data (Names, addresses, email, phone numbers) this applies to you and non-compliance could lead to a fine from the Information Commisioner's Office (ICO). Very few businesses will be exempt as the definition of personal data has been widened, e.g. it now includes CCTV footage. This law applies to schools, charities, voluntary organisations as well as regular businesses.
It all sounds ominous and a huge piece of "red tape" but it needn't be and it can have a positive effect for your business - show your customers how you use and store their data and that you care about the law and you will inspire confidence in your business.
As with many new IT requirements there are some unscrupulous operators scaremongering - selling toolkits and audits for large sums of money. Most small businesses do not need any of this ! Give me a call if you would like to discuss the implications of GDPR for you.