FacebookTwitterLinkedin
01858 414217hello@codestring.co.uk
Code String
Code String
Application development specialists
  • Home
  • About
  • Projects
  • Blog
  • Home
  • About
  • Projects
  • Blog
25th January 2018Industry newsBy Steve Irons

Talking about what? Well, GDPR – the General Data Protection Regulation – of course. As expected, since the turn of the year it has become the hot topic at seminars and is spawning a platoon of experts. Most businesses were aware of its imminent arrival (on 25th May) but consciously chose to take no direct action until 2018. That’s okay for many: five months is enough time to get their GDPR ducks in a row. Not so for Code String.

We took a more pragmatic view of this early on and acted. We’re up to date with the legislation, have learnt what it takes to be fully compliant, and are continually looking at additional measures we can implement. Why? Because it’s not just about us. It’s about our clients too. Adding an extra layer of security to the way we store and manage our clients’ data takes us well beyond the remit of GDPR – but that’s great for everybody. As a data processor, it means that our current and future clients (the data controllers) can see that we comply with the high standards they should expect.

A big responsibility comes with securing a client’s data anyway. We already had ISO27001:2013 in place to put us ahead of that game. But we have since added critical elements of GDPR compliance with Accountability, Privacy by Design, Information Held, Data Subject Access, Data Breach and Data Information policies. These are comprehensive but necessary measures that serve to inform and direct our team and our clients’ teams.

Here’s an example. We manage promotional competitions for several clients. All demand that we process, manage and store data about our clients’ customers.

GDPR Article 5 mandates that personal data ‘be kept in a form which permits identification of data subjects for no longer than is necessary for the purpose for which the personal data are processed’. In line with this, one policy already in place states that Code String will retain customer data for 190 days following a promotion. Seems pretty clear to us. We can extend that term but will anonymise that data by taking out all the personal details.

GDPR is being called a ‘game changer’, though the Information Commissioner’s Office states that very little is new. But it will be for some: for instance, public authorities have a reduced scope for relying on consent or legitimate interest as their lawful basis for data processing. But for us and our clients, the directives don’t seem unreasonable. Much of it is unchanged from the 1998 Data Protection Act that we already operate under. Documenting what information is required for each project, detailing the individuals who have access to that data, and adhering to policies that define what happens to that data over time is something we’ve always done. It’s sound business practice.

datagdprICOISOlawprotectionSecurity
About the author

Steve Irons

I started programming on a Commodore Vic 20 aged 6. Since then I have grown to love every aspect of computing and technology, the creative and business applications are limitless and never cease to amaze me. I have been working with technology both software and hardware for over 20 years now and in that time I have been fortunate to have been involved in some ground breaking projects for some very high profile clients. Since starting Code String in 2012 I have been working hard to bring all that experience together with the talents of our ever growing team to produce great solutions for clients and great support to those people behind the scenes who deliver them.

Related posts
Sea Life and Source Code
9th September 2016
IPM Cogs Awards 2016 – we’ve been nominated!
1st September 2016
Why iOS is not fit for business
12th August 2016
Smartphone separation anxiety: Do you suffer from it?
7th March 2016
A “theftie” can be taken of anyone who steals your phone, with this new app
2nd February 2015
Recent Posts
  • Azure Architect Certification
  • It’s proving to be an Agile life for us (Part 2)
  • On the journey to Agile (Part 1)
  • Good things come in threes.
  • Win a two-night stay for two at The Dorchester.
Categories
  • Business apps
  • Hosting
  • Industry news
  • Social media platforms
  • Solutions
  • Tech news
  • Tech tips
  • What we're up to
Tags
9001 27001 apprentices Awards christmas campaigns code Code Geeks coding Competitions Compliance cycling data security Developer jobs Developers digital security Draws encrypted data geek iOS IPM ISO Market Harborough McDonalds Microsoft Mobile National Coding Week online competitions online promotion online promotions prize giveaway promotional marketing promotions quality management Release mangement Reward Management rural location Security Security Threats Source code Staff Incentives tea Technology The Cogs 2016 training Visual Studio

Codestring

Say hello
01858 414217

hello@codestring.co.uk

Wellington Way, Airfield Business Park, Leicester Road, Market Harborough, Leicestershire, LE16 7WB.

© 2019 Code String Ltd 7911843