GDPR – One Year On

The 25th May marked the one year anniversary since GDPR officially came into effect in Europe. Since being the hot topic for much of 2017/18, has much changed since then? In our latest blog, we take a look at some of the key takeaways from the past year, as well as what to expect in the future era of data protection.

1 – 200,000 reported cases and €56 million – In an assessment from the European Data Protection Board (EDPB) it’s been revealed than there have been more than 200,000 GDPR-related cases in 31 countries since the data privacy regulations came into effect. What’s more, more than €56 million in fines has been collected.

2 – Data protection is a responsibility for everyone, not just the IT department – While security and data privacy had traditionally been exclusively the domain of IT departments, GDPR forced data protection onto the radar of pretty much every business employee. Some businesses have been quicker than others at getting their employees clued up on data protection, but nonetheless GDPR has definitely brought about more awareness.

3 – Cloud-based solutions continue to grow in popularity – With cloud-based solutions making it easier to transfer the regulatory obligations and risk on to an expert third-party, many organisations are turning to the cloud to mitigate any potential risks – which is only driving the growth and appeal of cloud-based systems even further.

4 – Organisations are still actively trying to comply – Complying with GDPR is not an overnight process. A year on and many businesses will admit they’re still not 100% there when it comes to making sure their business practises are compliant with GDPR and the latest technology innovations. Jumping on the bandwagon, many software companies are now offering ‘GDPR-compliant’ tech, to help businesses store and manage their data securely.

5 – Back up is key – Computer back-ups have never been more crucial than now. Not only does backing-up data help to keep it more secure and prevent lasting damage, but it also demonstrates whether a business is being proactive in its data protection and provides an easy-to-trace pattern of compliance, should a business face a GDPR probe.

6 – However, people still aren’t sure how businesses are using their data – Despite GDPR being such a high profile topic, many consumers are still in the dark when it comes to how their data is collected, stored and used. Mobile journey marketing company Ogury surveyed 287,571 consumers and found that 59% had no better understanding of how their data was processed than they did before the regulations came into effect.

7 -What’s next? – There is no question GDPR has opened up a wider discussion and awareness about data privacy, although it’s difficult to know how much of an impact the rules have actually had. One thing that has notably changed since GDPR came into effect is the number of incidents reported. However, statistics show 52 per cent of the overall cases have already been closed.

GDPR has also inspired governments in other countries to take action on data privacy. New privacy laws are coming into effect in California, Brazil and likely other U.S. states and countries, and these laws share many similarities with GDPR.

Our IT support services can help keep your business data secure and protected to minimise the threat of a data breach. Contact BTP – Hampshire’s fastest IT company – to find out how we can help on 02380 652 111 or email us at