Home / News / Hot Topic

Hot Topic

GDPR what it means for you

On 25 May 2018, the new General Data Protection Regulation (GDPR) will come into force. Information Commissioner’s Office (ICO) guidance confirms that a lack of knowledge will not be deemed an acceptable excuse for not complying with the the new law.

The GDPR replaces the existing Data Protection Act (DPA) 1998, and governs how individuals’ personal data is managed. It applies to all businesses in the EU. Even though the UK will be leaving the EU, it will not affect the commencement of the GDPR, which is set to be placed into UK law post-Brexit.

The GDPR is needed due to developments in internet and cloud technologies. There are now many ways to collect and store personal data. New measures are therefore required to ensure personal data is kept safe, and is only kept for legitimate purposes. All businesses, small and large will be required to comply with the GDPR.

The key principles of the GDPR

There are several key areas that you need to be aware of based on the fundamental principles of the GDPR.

The GDPR places a strong emphasis on accountability and transparency, and holds businesses accountable for safeguarding the collection, usage and storage of a client’s personal data. If you use third party software such as payroll and accounts packages, you will need to ensure these systems are GDPR compliant.

Businesses already compliant with the DPA will need to supply evidence of their compliance with the new GDPR. Businesses are required to identify a lawful basis for processing clients’ personal data: this must be processed fairly and accurately, and be kept in a form which permits the identification of data subjects for no longer than is necessary.

You will need to ensure that your members of staff are aware of the new GDPR rules, and that you provide them with thorough training ahead of the 25 May introduction date.

Ensure you have adequate procedures to prevent data breaches

Finally, businesses are advised to make sure that they have detailed procedures in place to detect, report and investigate a personal data breach. Certain data breaches will need to be reported to the ICO.

Penalties for non-compliance

Failing to prevent a data breach can result in fines of up to 4% of total annual worldwide revenue, or up to €20 million, whichever is the greater.

Further guidance in relation to complying with the GDPR requirements can be found on the ICO website.

Service	Name	Purpose	Expires
	PHPSESSID	This cookie stores a visitor's unique, randomly generated, session id and is used to pass information between site applications to enable them to function correctly. It is forcibly expired when the user closes the browser.	Expires on browser close
	nc_status	This cookie is used to optimise website traffic and distribution of services.	1 day
	nc_sid	This cookie is used to optimise website traffic and distribution of services.	Expires on browser close
	cookie_analytics	This cookie is used to define the option to enable or disable analytic and marketing cookies used for the website.	1 month
	ow_ac	This cookie is used to define whether cookiebar is displayed or not.	1 month
WordPress	wordpress_sec	This cookie stores a visitor's unique, randomly generated, session id and is used to pass information between content management system called WordPress to enable it to function correctly. It is forcibly expired when the user closes the browser.	Expires on browser close
WordPress	wordpress_logged_in_xxxx	Creates a session of the user currently logged into the website through the WordPress login page. This expires upon browser close.	Expires on browser close
WordPress	wp-settings-x	Wordpress sets a few wp-settings-[UID] cookies. The number on the end is your individual user ID from the users database table. This is used to customize your view of admin interface, and possibly also the main site interface. This cookie is only applied to persons logging into the website through WordPress.	Expires on browser close
WordPress	wp-settings-time-x	Wordpress sets a few wp-settings-{time}-[UID] cookies. The number on the end is your individual user ID from the users database table. This is used to customize your view of admin interface, and possibly also the main site interface. This cookie is only applied to persons logging into the website through WordPress.	Expires on browser close
WordPress	_icl_current_language	This cookie allows the built in WordPress Multilanguage plugin, to store the user’s current language. This is critical for allowing the site to function properly.	1 day
WordFence	wfwaf-authcookie-(hash)	This cookie is used by the Wordfence firewall to perform a capability check of the current user before WordPress has been loaded. This cookie will only be applied for users who have logged into the website.	Expires on browser close
Litespeed	_lscache_vary	This cookie allows Litespeed to store the user’s login status, the role of current user and if it has admin bar showing or not.	2 days
Litespeed	ls_smartpush	This cookie allows Litespeed to store server settings to help with performance.	2 days

Name	Purpose	Expires
_ga	This helps us count how many people visit by tracking if you’ve visited before.	2 years
_gid	This helps us count how many people visit by tracking if you’ve visited before.	24 hours
_gat_irisOpenWebsite	This helps IRIS Software Group, the developer of the website, to monitor site performance for . The data collected is anonymous and is only used for analysing website performance overall.	24 hours
_gat	This is used for managing the rate at which page view requests are made.	Expires on browser close

Hot Topic

GDPR what it means for you

The key principles of the GDPR

Ensure you have adequate procedures to prevent data breaches

Penalties for non-compliance

Our Promises

What Our Clients Say

Meet The Team

Services

Hot Topic

GDPR what it means for you

The key principles of the GDPR

Ensure you have adequate procedures to prevent data breaches

Penalties for non-compliance

Our Promises

What Our Clients Say

Meet The Team

Services

Sign up for our newsletter