Increasing online searches around the looming General Data Protection Regulations (GDPR) has revealed an alarming gap in knowledge around the new requirements, according to law firm HRC Law.
The sharp surge over the past three months indicates an increasing desire to learn more and that thousands of people are now starting to think about what it means for their organisation.
The most frequently searched term ‘GDPR compliance’ rose by 450% in the past quarter, indicating very little or no high-level knowledge, while others revealed that the date the new legislation comes into effect is still a mystery to many.
The high number of online searches for the term ‘GDPR Brexit’ was of particular concern, indicating confusion around the impact of Brexit on the responsibilities of UK businesses to comply with GDPR.
Graham Hansen, a Solicitor and GDPR expert in HRC Law’s commercial team, said: “The UK government has made it clear it will be implementing the rules in full regardless of the UK’s imminent departure from the EU. In addition, the legislation applies not only to companies operating within the EU, but also to any businesses operating outside the EU that offer goods and services to EU citizens.
Perhaps unsurprisingly, ‘GDPR fines’ is also a rising search term as businesses assess the potential repercussions of non-compliance.
Graham added: “With GDPR coming into effect in less than ten months’ time, we’re seeing an increase in searches for basic principles around GDPR because the legislation will have sharper teeth than its predecessor, with substantial fines for non-compliance, so it is vital that companies take time to clue themselves up on what they need to do, and when they need to do it by.
“This isn’t something that should be left until the last minute. Businesses should be looking now at how they use personal information; an essential first step to highlight problem areas and focus initial efforts. At a minimum, they must understand what personal data they hold, where it came from, and who they share it with – explicit permission is now a requirement.”
He continued: “On a positive note, rising search terms around compliance, although fewer in number, is a reminder that there are businesses out there that are leading the way in ensuring that they are compliant, recognising that a reputation as a considerate, trusted custodian of data is a competitive advantage that will inform consumer purchasing decisions to a greater extent in the future.”
GDPR is the new legal framework that applies to all organisations handling the personal data of EU citizens. Coming into effect on 25 May 2018, it affects not only businesses operating within the EU, but also those outside the EU that offer goods and services to individuals within the EU.
HRC Law has produced answers to a list of frequently searched questions around GDPR, available here. The firm is also holding seminars for businesses to provide a practical GDPR toolkit, as well as an overview of the regulations and how people can prepare for new compliance requirements, changes to contracts and documentation, and to ensure a robust approach to IT security and marketing. They will take place on 20 September and 3 October at HRC Law’s Manchester City Centre offices.
