The consequences of non-compliance
Is your company data compliant? It makes sense to implement appropriate processes and systems for data and document management.
More than ever organisations now process personal data about Staff, Customers and Suppliers. The Data Protection Act (DPA) is legislation that generates the highest number of compliance challenges for any organisation.
Data Protection Principles
Following strict guidelines known as ‘data protection principles’, those responsible for using data must ensure the information is: –
- fair and lawful
- used for specifically stated purposes
- adequate and accurate
- kept for no longer than required
- handled according to people’s data protection rights
- kept safe and secure
- not transferred outside the European Economic Area without adequate protection
Monitoring and Audits
Regular audits of systems and processes, reduces the financial consequences of non-compliance. Also, investment improves the efficiency of business operations.
Company data no longer required is vulnerable, particularly if it fails to secure its safe disposal.
Data Protection Act
The Data Protection Act states that “appropriate technical and organisational measures must be taken to avoid accidental loss or destruction of, or damage to, personal data”. Failure to securely dispose of IT equipment is extremely costly.
It is tempting to ignore, than make sense of the policies and procedures. This is due to the sheer volume of do’s and don’ts incorporated within the Act.
Research by the Ponemon Institute in the USA found that business disruption and loss of productivity were the most significant consequences for companies that did not maintain compliance with relevant legislation and regulation.
Implementation of appropriate processes and systems for data and document management as a matter of routine, makes sense. Effective document management has a positive effect on a business’s bottom line through smarter, more efficient working.