General Data Protection Regulation – What is your business doing about it?


A simple explanation of GDPR

The General Data Protection Regulation (GDPR) is replacing the outdated Data Protection Act; it covers citizens of the European Union, and extends and modernises the definitions of personal data.   The GDPR provides citizens with a greater level of control over their personal data and gives businesses some new obligations over how they handle this personal data.  It is an evolution, not a revolution, and those businesses who currently follow good data protection practices will only have small changes to make.  However, it is a good opportunity for all businesses to review their data protection practices, as public interest in data security and privacy is increasing, and GDPR will only increase that interest.

There are 12 steps recommended by the ICO for businesses to follow in preparation for the GDPR

1. Awareness

Senior management, and key personnel in your business must be aware that the law is changing.  They need to appreciate the impact this is likely to have.

2. Information you hold

You should document what personal data you hold, where it came from, and who you share it with.  You may need to carry out an information audit, or data mapping exercise.

3. Communicating privacy information

You should review your current privacy notices and plan to make any necessary changes in time for GDPR implementation.

4. Individuals’ rights

You should check your procedures to ensure they cover all the rights that individuals have, these rights are changing under GDPR.  This needs to include how you would identify and delete personal data, or provide data electronically and in a commonly used format.  You should also have processes in place to ensure you understand when individuals do, and do not, have these rights, and how quickly you are obliged to respond.

5. Subject Access Requests

You should ensure you have procedures and plans to ensure you can handle requests within the new timescales and provide any additional information as required.

6. Lawful basis for processing personal data

For each piece of personal data that you process, you should identify the lawful basis for processing, document it, and update your privacy notice to explain it.

7. Consent

Where you rely on consent as the lawful basis for processing personal data you should review how you obtain consent, how you record and manage consent, and whether you need to make any changes to these processes.  You should also look to refresh any existing consents, if they were not obtained in a way that is compliant with the new regulation.


You should think about whether you need to put processes in place to verify individuals’ age, and to obtain parental or guardian consent for and data processing activities.

9. Data breaches

You should ensure you have procedures in place to detect, report, and investigate a data breach.

10. Data Protection by Design, and Privacy Impact Assessments

You should familiarise yourself with the ICO’s Code of Practice on Privacy Impact Assessments and the latest guidance from the Article 29 Working Party and work out how and when to implement them in your organisation.

11. Data Protection Officer

You should designate someone in your organisation to take responsibility for data protection compliance, and consider where this role will sit within your organisation’s structure.  You should consider whether you are required to formally designate a Data Protection Officer.

12. International

If you operate across more than one EU member state, you should determine your lead data protection supervisory authority. Article 29 Working Party guidelines will help you to do this.

If you require assistance with any of these points please contact us

There’s a reason why so many businesses use First Stop IT, and if you’d like to find out more, please feel free to live chat with us, fill in the form for a call back or give us a call on 01279 400350

quote-leftFont Awesome Free 5.0.6 by @fontawesome - License - (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License)


“Gemma is an absolute legend!! To say I am pleased and relieved is an understatement. I cannot thank you enough for all your help. ”

Amanda, Harlow, Essex

“friendly helpful fast accurate solution given”

John, Hoddesdon, Herts

“Mike dealt with my query quickly and efficiently :)”

Jo, Buntingford, Hertfordshire

“I have worked on a number of clients’ projects with Tai and First Stop IT. I have always found Tai to be a talented IT system designer who listens to the business needs of his clients to ensure that the final solution fully meets their requirements.

He has in depth knowledge of server & desktop hardware, Microsoft software, and range of security, backup, and cloud services. Tai is able to easily communicate and explain these services and features to others who do not have technical background.

With the backing of an excellent team of engineers at First Stop IT, I found their service to be fast and professional with great on-going support.”

Martin, Chelmsford, Essex

“I do not use the term great ever. I am old and boring and use more controlled comment. However, your representative was prompt and identified the potential cause very readily. We now, naturally, need to wait separately to see if the internet problem identified resolves the problem.”

Vanessa, Loughton, Essex

“Thanks for Andy’s quick response, knowledgeable and professional. resolve the issue at first attempt. I feel no difference then with in house IT support.”

Faye, Harlow, Essex

“Solved extremely quick :-)”

Danielle, Harlow, Essex

“Thanks to First Stop IT we have a computer network that spans two locations and access to a friendly and responsive helpdesk team. We recently upgraded both of our servers and some work stations; the process was painless and has resulted in a faster more efficient working environment.”

Anthony, Berkhamsted, Hertfordshire

“You are always supportive and helpful.”

Graham, Harlow, Essex

“As usual, fast expertise service”

Denise, Welwyn Garden City, Herts

“We have used First Stop IT on various projects, from engineering support cover, to networking support services. We have always found their service to be prompt and of an excellent nature. The staff have been professional, helpful and informative.”

Advertise the Web, Chelmsford, Essex

“Danny was very patient and resolved the issue”

Ella, London

“Very quick response and solving of the problem. It turned out that there wasn’t a problem at all but it was great to clarify it so quickly. Thanks!”

Maria, Harlow, Essex
“Its nice that First stop are so familiar with our company, so that there isn’t need for much explanation, therefore their service is very personable and approachable. They always provide a fast, friendly response and resolution, and never make you feel any problem is too small. 🙂 ”

Leanne, Waltham Cross, Essex

“Very quickly restored documents that I had stupidly deleted – a brilliant job, thanks very much.”

Mary, Loughton, Essex

“quick response, problem sorted”

Bob, High Wycombe, Bucks

“Fast accurate simple response.”

John, Hoddesdon, Herts

“My experience was great because my issue was resolved very quickly despite an extremely slow computer!”

Lori, Thaxted, Essex

“Great service from Ian”

Jackie, Stevenage, Herts

“Ian always sorts all my IT issues for me . He is undoubtedly the best you have on your support team.”

Rekha, Stevenage, Herts

“Available, expert, friendly, diligent”

Jonathan, Broxbourne, Herts

“Ian sorted out my problems quickly – many thanks”

Diane, Nazeing, Essex

“Gemma worked the cause of the issue out quickly and was easy to talk to (even with me being grumpy!). She went an extra step to make sure that it’s more obvious if there are junk emails. ”

Ruth, Harlow, Essex

“Matt was extremely professional, friendly and effective; thank you.”

Grant, Loughton, Essex

“Very helpful and fixed problem quickly”

Mike, Loughton, Essex

“Because Noel is great! thank you”

Sophie, Thaxted, Essex

“Quick resolution of the issue”

Ruth, Harlow, Essex

“Ian & Matt very helpful”

Chris, Stevenage, Herts

“Fabulous tenacity to find a solution to work for me. I am very grateful.”

Michelle, Stevenage, Herts

“Ian dealt with it with ease . Great to watch remotely whilst he worked his magic 🙂 Quick and easy solution.”

Grant, Waltham Abbey, Hertfordshire

“Our requirements for highly specified technical machines were more than met by the professional team at First Stop IT. The transition to a new network was a daunting prospect but it was managed with little fuss and great expertise – thank you very much”

David, Buntingford, Hertfordshire

“Chris sorted problem on one telephone call as usual”

Sue, High Wycombe, Bucks

“We have been a client of First Stop IT since 2006 and we have never even looked at another supplier, the service we receive is first class, fast, efficient, friendly and very professional.

Our business is 24 hours a day 7 days a week 365 days a year, and it is vital we have reliable IT support network to call upon, with First Stop we certainly have that.”

Lee, Thaxted, Essex

“Very supportive, checked my understanding at each stage.”

Yvonne, Stevenage, Herts