GDPR Data Protection for Small Business

Small businesses that process personal data need to make sure their practices are compliant with the General Data Protection Regulation (GDPR). GDPR compliance information out in the wild can be very complex for all businesses looking to become and remain GDPR compliant. While some small businesses enjoy certain exemptions under the GDPR, these are very small exemptions, only one or two. Within your business, you are still required to comply with nearly all personal data processing compliance requirements under the GDPR. Searching GDPR, personal data, or other data compliance related phrases like ‘GDPR small business’ on Google can lead you down a very stressful rabbit-hole where large legal names like ‘The General Data Protection Regulation’ can be scary or feel like too much information.

To help you comply with the GDPR, we have compiled this resource page. It will be of help to you as a small business as you start and mature your GDPR compliance programme over the next while. GDPR compliance in your everyday data processing is achievable and we are here to help you as you continue your processing of personal data in a compliant way. Keep an eye out for our handy GDPR guides to help you deal with incidences and data breaches within the mandated time frames as well as data subject rights requests within the required 30 days (one month).

Cyber Security

Data protection and cyber security go hand-in-hand so please also take a look at our Cyber Security for Small Business resource page for more cyber security information.

GDPR Small Business Information and Advice

Please note that these data protection resources do not constitute legal advice and are not a substitute for such. We welcome interaction and data related enquiries from all businesses. Please feel free to share this information with your compliance, security, privacy or data protection officer.

  • hegdprseriesbusinesshelp

We’re on a GDPR mission with Andrea Manning

By |April 3rd, 2020|

Today on The GDPR Series podcast, our focus is bringing the GDPR back down to earth.  I chat with a rare woman in cyber (and data) who presents her GDPR message to businesses through the lens of real life cyber security issues.  With a very interesting background in the hotel, travel and leisure industry, we are treated to a discussion with somebody who knows all about taking care of masses of far and fast moving data!  Listen to find out more.

  • GDPR and your email marketing Strategy

GDPR and Your Email Marketing Strategy

By |March 5th, 2020|

The GDPR in conjunction with other law provides guidelines and a legal framework for the way your business needs to manage, secure, and share personal data. Naturally, that affects the way you market too. Here’s how the GDPR framework affects your email marketing strategy.

GDPR, Children’s Data and Moving from Paper to Digital with Steph McSherry of Kinderama

By |February 28th, 2020|

Today on The GDPR Series podcast, our focus is straight business talk, children's data and moving from paper to digital!  I chat with a creative business owner who deals with most of her data protection compliance tasks herself.  Besides helping me translate data protection compliance language into plain speak,  she shares with us how to just get on and do what needs doing.  This business owner writes her own policies and does her own vendor risk assessments!  Listen to find out more.

  • Data Compliance Consultant

Your Data Compliance Consultant

By |February 9th, 2020|

You’re busy with your business. You hire an accountant to handle the finances. It’s time to hire a Data Compliance Consultant to keep your business on the right side of regulation.

  • WhatIs GDPR?

What is GDPR?

By |November 25th, 2019|

The General Data Protection Regulation (GDPR) came into effect on 25 May 2018. But, what is GDPR and what does it mean for your business?

Book Your Checkup

GDPR 3 Day Audit Package – Consultant Help

Do you want to fast-track your GDPR compliance?  From €1800 plus VAT –

  • Interview workshops over half a day.
  • Full audit with report.
  • Action plan for the next 12 months.
  • Data Protection Policy, Data Protection and Privacy Notice, Data Retention Policy and Security Policies.
  • Final meeting to report back with one hour awareness training and Q&A with staff.