Tranlowe Ltd
Tranlowe Ltd
Conversely, the starting point for the Tranlowe perspective paper is to see what the regulation actually says to see who is affected or excluded, and what it means for them, particularly if they are not a big business.
The basic question of “Who?” is readily addressed by looking at Recital 18 of the regulation supported by Article 2.2c: domestic use is exempt, BUT EVERYTHING ELSE must comply!
The paper is therefore written with the intention of supporting not just SMEs but also micro-enterprises and clubs where technical resources and manpower are more limited. If you are either a larger business or handle large amounts of data then the paper is insufficient for your needs.
At 88 pages the regulation is too long to reproduce but particularly relevant extracts are in Appendix 1 so you can cross reference why I make the proposals that I do, and look up the full text.
I start with what is needed as a single page! The rest is appendices initially listing the extracts just mentioned and then samples of what it means in practice. The final section is a correlation of what I have written with the summary produced by the ICO as a 12 Step plan, although you may also wish to read their guide to small businesses (updated 21-nov-17) at: https://ico.org.uk/for-organisations/business/.
Following on from the paper, a GDPR toolkit has been assembled which includes prepared documents and spreadsheets complete with an Information Asset Handbook on how to run the system.
You are welcome to use the paper to generate the necessary policies and records for GDPR compliance yourself or alternatively you might be interested in buying the toolkit and some support.
To receive the paper in full or to purchase the toolkit please contact me by sending an email request.