Patrick Van Eecke, data protection, privacy and security partner at law firm DLA Piper, explains in this article what steps technology firms need to take to ensure compliance with the GDPR when it comes into effect .
At Fry, it means that we have until 25 May 2018 to prepare ourselves and appoint a data protection officer (DPO) which will be mandatory for all organisations that profile customers or process sensitive data. Interestingly, we could either choose an employee within the company or outsource the DPO role altogether.
The question is, will there be an interim arrangement if the UK does indeed trigger Article 50 and push forward with Brexit? We will have to wait and see.