The European Commission has published guidance on the upcoming EU General Data Protection Regulation (GDPR). The document:
- Summarises the purpose and benefits of the GDPR;
- Evaluates the steps that organisations, national data protection authorities and the Commission have taken to prepare for the GDPR;
- Outlines what still needs to be done before the Regulation takes effect on 25 May 2018; and
- Discusses the measures that the Commission intends to take in the coming months.
The guidance also states that the European Commission has launched a new online tool to help individuals and organisations – particularly small and medium-sized enterprises (SMEs) – comply with and benefit from the GDPR.
The guidance highlights the work the European Commission has done to help public and private sector organisations prepare for the GDPR since it came into force in 2016. It has “set up an Expert Group to accompany the Member States in their effort to prepare for the Regulation. The Group, which met already 13 times, acts as a forum where the Member States can share their experiences and expertise 14. The Commission also engaged in bilateral meetings with Member States’ authorities to discuss issues arising at national level”.
This work will continue in the final months before the GDPR takes effect. The European Commission is investing €1.7 million in data protection authorities and training data protection professionals. A further €2 million “is available to support national authorities in reaching out to businesses, in particular SMEs”.
The European Commission’s investment in training data protection professionals evidences the lack of qualified personnel. Many organisations are desperate for staff who can help them oversee their compliance process, so there has never been a better time to invest in GDPR training.
Our Certified EU General Data Protection Regulation (GDPR) Foundation and Practitioner Combination Course explains the GDPR in clear language, and gives you practical advice on planning, implementing and maintaining a GDPR compliance programme. It also enables you to fulfil the data protection officer role.
The course is delivered by an experienced data protection practitioner, and is ideal for both managers who are already involved in data protection and individuals who want to get started in the field.