Every entrepreneur should consider whether there is a risk of data leakage in his or her business. Companies that largely trade and sell data and collect data systematically about specific people need to take appropriate measures under the General Data Protection Regulation (GDPR) and ask for the consent of their clients. The regulation does not apply to specific sectors. What matters is the systematic collection of personal data. GDPR is not a revolution but an evolution of the rules that already exist based on the EU directive, respectively on national laws regarding personal data protection. Those are the main conclusions of a debate on Data protection in small businesses organised on 12th March in the European House in Prague.
© CEBRE – Czech Business Representation to the EU