The European Union has taken a huge step towards protecting the fundamental right to privacy for every EU resident with the new General Data Protection Regulation (GDPR) which became effective from May 25, 2018. In the UK, this is implemented as a new version of the Data Protection Act which will still apply and keep in step with GDPR even after ‘Brexit’.
It means that EU residents will now have greater say over what, how, why, where, and when their personal data is used, processed, or disposed. This rule clarifies how the EU personal data laws apply even beyond the borders of the EU. Any organization that works with EU residents' personal data in any manner, irrespective of location, has obligations to protect the data.
Garness Jones (Commercial) Limited. is aware of its leadership role regarding compliance and in providing the right tools and processes to support its customers in meeting their GDPR obligations.
At Garness Jones (Commercial) Limited. we have always honoured our clients right to data privacy and protection. We only collect and hold the information we need; your details are only used for marketing purposes with your consent and we do not provide this information to anyone else for any purpose. We also recognise that our suppliers are a key part of our ability to serve our clients and we put the same effort into protecting them as we do our clients and staff.
We have no necessity to collect and process any individual’s personal information beyond what is required for the provision and management of our services.
Over the years, we have demonstrated our commitment to data privacy and protection by ensuring the technology and tools supporting our services have been implemented to the best data privacy and security standards, but we recognise that the GDPR will help us move towards the highest standards of operations in protecting customer data.
As a data controller, Garness Jones (Commercial) Limited. understands that it is responsible for ensuring all its staff, suppliers and service providers understand and actively embrace the ideas and intentions, principles and rights of GDPR. And not just in a way which ticks boxes, but which changes the way we manage individual’s information and then drives the business forwards.
From our customers perspective, we understand our obligation to help them prepare for their own GDPR compliance and to ensure our service meets their contractual needs.
This is not something which can be completed overnight, nor does it end when we can say ‘we are compliant’. Therefore, we have embarked on an ongoing journey to become compliant and maintain our compliance as the laws and risks change and evolve.
We have thoroughly analysed GDPR requirements and have put in place a dedicated internal team to drive our organisation to meet them. Some of our ongoing initiatives are:
We understand that meeting the GDPR requirements will take a lot of time and effort, both for us as a responsible supplier and for you as our member or customer. But we want this to be as painless as possible.
In all cases, you can expect us to provide you with