Everything is echoing from the EU regulation these days, in fact it has been for quite some time . In the meantime, the essence is lost... The media simply do not get the full significance of it.
Conspiracy theorists have been talking about an Orwellian world for quite some time, perhaps not without reason.
We still do not deal with the protection of our private sphere, we only get upset and feel sorry for ourselves when we hear about data theft or spam constantly arrives in our mailbox, or our password or bank account number is posted on the Internet.
It almost always turns out that the person concerned was not careful about expectedly on your data and thus became an easy target...
It is good news that the Union is trying to help us with this, since it makes those to whom we give our data accountable, although it cannot take care of it for us. If we are not careful to whom we give or make our data available, then there is still no help.
Furthermore, there are two sides to the matter. On the one hand, the help to protect our data comes in handy, and on the other hand, as an entrepreneur standing on the other side, we suffer the price of this very properly. As a private individual, the intention is to be welcomed, as an entrepreneur, one sees the devil.
A balance should be found between the two, but this is no longer up to us, but to the legislator. Although this is already too late, as the Decree is in the state of implementation... No state can overwrite these rules, only minor deviations can be applied, which do not affect the essence, no matter what anyone says... It is worth reading the decree...
Why did we come here? I don't know the exact reasons, but I'm sure that our own irresponsibility played a part in this, because we weren't able to protect our data on our own. The worst part is that many of the people we were forced to provide (banks, service providers, etc.) also handled our data irresponsibly. Many times everyone forgot about the most basic protection...
What can we do now? Let's try to make the best out of it. The number of data protection "consultants" and GDPR "experts" who sell "model regulations" on the Internet without any responsibility, even advertising themselves as lawyers, has increased significantly. I didn't mean this as a deception and a source of money...
More about thinking responsibly. Let's approach the problem as an entrepreneur as if we had to take care of the protection of our own data. We will immediately understand the spirit of the Ordinance better. We will immediately see that not only legal, but also serious information security (physical, IT) knowledge is necessary to solve the task. We will find few such professionals, the legal experts are also working together with the IT professionals to try to meet the regulation-making needs of the companies...
However, this is only the tip of the problem, this is not what the EU regulation is about. It sees the policy as just a tool to demonstrate compliance. In other words, it is a "necessary but not sufficient" condition. Not least because, just as every business is different, no two data management systems are the same. It is almost impossible to assess this within a company, and it often causes problems for an external independent specialist as well. After all, during everyday activities, it often doesn't even occur to you that what they do is data management...
What do I recommend? First of all, to contact a suitable specialist, but make sure of your qualities, don't fall back on the doctorate title or self-praise. If possible, ask for a preliminary consultation and assess the specialist's competence. Strive for the widest possible range of services, not just drawing up a policy, because that won't get you far... Ask for guarantees, responsibility, liability insurance.
What can we offer? All this is available here. We try to flexibly adapt to the needs, but you should know that we have decades of learning and experience in this, so we cannot work for free... If you think so, you can find us at any of our contact details on our website...