General Data Protection Regulation Training

As some of you are aware, the EU General Data Protection Regulation (“GDPR”) comes into force on May 25, 2018, updating the obligations imposed on entities in relation to the collection, use and storage of the personal data of EU residents. Whilst this is not a complete detraction from the current position, the requirements in almost every aspect will be more robust and the penalties for non-compliance will increase forty-fold to €20m or 4% of worldwide group turnover and so as a business we need to ensure we are compliant.

This is a piece of EU legislation but is wide-reaching as the GDPR relates to the personal data of EEA (EU plus Iceland, Liechtenstein and Norway) data subjects and as such is relevant to every person in our business who deals with any such data, not just those of us based in the EU. Accordingly, all members of staff dealing with such personal data (personal data in this context refers to any information relating to a person that could be used to identify them and so is broad enough to include email addresses, online identifiers and IP address as well as traditional information such as name, address, age, occupation etc. and so means that the GDPR is most likely to apply to those working in the HR, Finance and Marketing business areas) are required to undertake the GDPR training.

This training outlines what the GDPR is, how it affects you personally (if you are based in the EEA) and in your professional role and the things we should all be doing as a business and individually to be compliant. If you have any questions please contact ntopping@iconixbrand.com or dataprotection@iconixbrand.com.