Blog

25 January 2018

Getting your SME practice GDPR proof by Petra Weymueller & Willem Roekens

The General Data Protection Regulation (GDPR) is a major update to the EU rules for protecting personal data. It aims to restrict how companies process private information (e-mail addresses, phone numbers, etc.) and gives individuals more rights over their data.

Every organisation dealing with personal data will need to comply by 25 May 2018, as that is when the GDPR will start to apply. Fines in cases of non-compliance are increased up to €20 million.

Compliance is especially burdensome for professional accountants serving small-and medium-sized enterprises (SMEs). This blog sets out how you can get started and where you can find help. If you would like to know more on how to make your own practice GDPR proof and how to help your clients, please check our publication What do the new EU data protection rules mean for you? .

 

How to get started?

  • Review your existing procedures on handling personal information
    • How you collect, store and even erase data will be regulated by the GDPR which introduces burdensome obligations for personal information on your PCs and in your filing cabinets.
    • Document how you deal with these obligations in policies and work processes and train your staff accordingly. It is important to go beyond a ‘tick the box’ approach and create a data protection mindset.
  • Check if your (IT) suppliers are GDPR compliant
    • Keeping personal data online poses further security challenges, so you need to update your existing contracts and scrutinise new ones. Around 75% of cloud service providers are not yet in compliance with the GDPR, as was suggested in a report last September.
    • Take extra safeguards if any of the personal data you possess are transferred outside of the EU, such as when stored on servers in 3rd countries.
    • Get protected against data breach and cybersecurity risks and make sure you can demonstrate how.
  • Inform your SME clients
    • When you know how to comply, you can combine this GDPR knowledge with your unique insight into their business and support them in this transition.
    • You can help them get their personal data in order and reduce the risk of penalties for non-compliance

 

Where to get help?

Related content

BlogGDPR one year on: its impact on auditors and accountants?

13 May 2019

PublicationGDPR: implications for auditors

6 December 2018

UpdateTechnology

27 March 2018

UpdateTechnology: GDPR extra

23 March 2018

EventHow to get your SME accountants GDPR ready?

16 March 2018

PublicationFAQs: all you need to know about the Corporate Sustainability Reporting Directive

23 November 2022

EventSMEs’ sustainable transition: how to support it?

15 November 2022

PublicationSME risk management – cyber risks & resilience checklist

10 November 2022

NewsEC’s proposal to ban products made using forced labour

28 October 2022

EventMembers’ Engagement Day

19 October 2022

Stories from practiceInsight from SME accountants: sustainability matters for the new generation

12 October 2022

EventThe impact of bribery and corruption on SMEs

11 October 2022

UpdateSME Update

30 September 2022

Stories from practiceInsights from SME accountants: taking up the sustainability challenge to help SMEs

29 August 2022

Stories from practiceInsights from SME accountants: from professional sports to environmental accounting

9 August 2022

Stories from PracticeInsights from SME accountants: practitioners help SMEs go green

25 July 2022

UpdateSME Update

12 July 2022

Stories from practiceInsights from SME accountants: how to keep bringing value to small businesses

6 July 2022

UpdateSME Update

27 May 2022

Consultation responseEC’s consultation on VAT in the digital age

30 March 2022

EventIntellectual property for accountants – train the adviser

25 March 2022

UpdateSME Update

24 March 2022

PublicationHow IP can help build risk resilient SMEs

24 March 2022

PublicationWar in Ukraine – what European accountants need to know

9 March 2022

In the mediaAccountancy Europe & the EUIPO: working together to support and guide SMEs

1 March 2022

Sign up for our newsletter

* indicates required
Would you like to subscribe to our newsletter?
On which topics would you like to receive news?