All this talk about the GDPR and data protection recently has got me wondering...who here has take the time to register their business with the ICO as a data controller?
Chances are, most of us here are data controllers. We all have clients and we probably keep details of those clients somewhere - maybe in a third party system like FreeAgent.
Along the same lines, if you keep this information elsewhere who has started taking steps to audit these various third party services - most of whom probably count as data processors - to check that they are taking steps to comply with the GDPR?
It’s not completely clear to me to what extent the exemption for “accounts and records” covers.
Chances are, most of us here are data controllers. We all have clients and we probably keep details of those clients somewhere - maybe in a third party system like FreeAgent.
Along the same lines, if you keep this information elsewhere who has started taking steps to audit these various third party services - most of whom probably count as data processors - to check that they are taking steps to comply with the GDPR?
It’s not completely clear to me to what extent the exemption for “accounts and records” covers.
Comment