In April 2016, the European Union (EU) adopted a new wide-ranging data protection law called the General Data Protection Regulation (GDPR). As of 25th May 2018, the GDPR is planned to be a directly applicable law in all EU and European Economic Area (EEA) Member States.
While the UK’s time as an EU member state may be set to come to an end, we will still be members on the date the GDPR comes in to force and therefore the likelihood is that the regulation will be adopted in to UK law at the time of exit from the union.
The GDPR does not introduce many entirely new concepts in relation to data protection but it does increase the compliance requirements on the controllers and processors of personal data in areas such as:
1. Supporting erasure of personal data
2. Logging changes to personal data
3. Logging read access to sensitive personal data
4. Providing reports or display functions to inform private persons about personal data stored about them.
We have already had indication from our partners at SAP of their intention to provide a patch or patches for SAP Business One in order to ensure the system complies with the new regulation. We’ll keep you up to date with all the news related to our solution portfolio in the run up to GDPR implementation right here on this blog. Stay tuned!