www.bizinfoportal.co.uk/2021/04/23/business-development-strategy-creating-long-term-value/

Every business collects information about staff and customers however, certain data is considered personal, and can be regulated by privacy laws. In 2014, a disgruntled Morrisons employee leaked contact details for customers and staff. The business was penalized for violating privacy laws. The privacy laws of many countries such as the EU’s General Data Protection Regulation (GDPR) make use of this definition of personal data.

This includes information about a person’s behaviors, habits, and affiliations that can be used to identify them. Names address, addresses, email addresses, and telephone numbers can be used to identify a person along with photographs, videos, as well as recordings of conversations between your employees and customers. The GDPR requires that you protect personal data that is sensitive and also requires disclosure and consent.

Many privacy laws around the world provide greater security for sensitive data. These could include information about biometrics, health, or political associations. You will need explicit, clear and unambiguous consent prior to processing sensitive information. The level of security required will depend on the laws applicable to your area of operation.

You may need to keep an inventory of your laptops, computers and digital copiers in order to determine the location where you keep your personal information. It is recommended to check your computer systems, file cabinets and the personal computers at home, flash drives mobile devices, flash drive, and other equipment utilized by employees. You should also take into consideration the personal information your company receives from third party and suppliers.