What! A data protection professional telling you not to do GDPR! What is the world coming to?
Confusing comment from me I know, but what the heck, why should we bother with good information governance. I myself prefer my IT Consultancy and Project Management disciplines anyway.
But if you are interested read on:
- Don’t gain a business benefit over your competitors because you don’t take the security of your existing customers personal information seriously
- Don’t recruit the best staff because they see that you don’t care about their personal information.
- Don’t gain a brand advantage because your potential customers found out you don’t care about the security of the data of your existing customers and staff.
- Don’t do GDPR because its only another Y2K fiasco, even though Y2K was an unknown unknown as in no-one knew exactly what would have happened, GDPR is a known known in that we all know its coming and we all know what’s expected.
- Don’t engage with your employees by having them get involved and feel empowered to be part of building the business. Just let them get disillusioned and realise they might get some compo when the inevitable happens.
- Don’t do GDPR and end up in a position of being a simple step forward to ISO 27001 accreditation.
- Don’t end up with improved, efficient, meaningful processes and policies that will enhance quality and reduce risk.
- Don’t please shareholders or stakeholders with potentially improved figures that could arise from good data governance.
- Don’t bother with good quality advice from a qualified industry professional, it will be cheaper to get one of the overnight GDPR experts to advise you.
- Don’t worry about the significantly increased penalties that could arrive should the inevitable happen.
- Don’t do GDPR because doing nothing is an easy option.
As you may, or may not have, worked out, I am being sarcastic. Good information governance is essential to any organisation especially with the ever-changing face of technology these days.
I don’t like to focus on the bad things, hence increased penalties being the last item on the above list. I tend to focus on the many significant good and beneficial things that come from good information governance.
If you are struggling to get useful and meaningful advice on information and IT security or IT in general, then please get in touch.