GDPR: Why communication & continuous learning are key to compliance

GDPR: Why communication & continuous learning are key to compliance

General Data Protection Regulation, better known as GDPR, was first implemented in the UK in May 2018 and has been an important part of protecting people’s data and the way it’s handled. However, many businesses are at risk, either because they wrongly think GDPR doesn’t apply to them, or because they don’t fully understand the laws or how to be GDPR compliant.

Fortunately, the risks of being fined by the Information Commissioner’s Office (ICO) for breaches of data protection are entirely preventable, provided that a business and its staff understand the regulations and how to be compliant.

“Training is a core element in GDPR compliance,” explains Cristina Vannini-Goodchild, Managing Director & Founder of CVG Solutions Ltd. “By training your staff, you’re generating awareness among your employees and embedding GDPR values into the core of your organisation.”

The right approach to change

As well as having the knowledge of how to be GDPR compliant, Cristina believes that there’s more to ensuring a company is fully compliant.

“Frequent refresher training is key, alongside a top-down led approach so that leaders of an organisation don’t just talk the talk, but walk the walk,” says Cristina. “It means that there is someone to hold the line when it comes to making changes. People don’t like change and will always resist unless they understand it.”

When it comes to making a change there are three things that are important: Communication, Communication and Communication.

Cristina Vannini-Goodchild, Managing Director & Founder of CVG Solutions.

“This needs to come from management and be reinforced by regular training. Implementing both of these elements can make the adaptation process much smoother. If the message from upper-management is: ‘We are doing this and this is why…’ and this is then backed up by regular training, it can really help to adapt to new changes.”

Working together

“We’re not here to simply run a compliance analysis and provide a list of gaps and tell businesses what actions to take,” Cristina explains. “We work closely with our clients to actually take the necessary steps in achieving full GDPR-compliance, we stay with you throughout the journey. In essence, we make it as easy as possible By applying practical solutions that are proportionate to your business.

If you’re concerned about your business’ GDPR compliance and data protection, email, or call Cristina on 01775 660506 for more information.

Having trained as a journalist with the UK's national news agency, the Press Association (now known as PA Media), Thomas is an accomplished writer with his work published in several business, entertainment and special interest magazines.