An introduction to the GDPR

Where have the new regulations for personal data come from?

Focused on the individual, with a bounty of opportunities

In its essence, the GDPR is driven by the rise in connected technology and organisations of all shapes and sizes who are now in possession of more customer information than ever before.

The Data Protection Act of 1998 was created at a time before smart-phones and social media existed and so an update to the practices surrounding personal data was long overdue. The EU’s General Data Protection Regulation (GDPR) is the result of four years of work to bring data protection legislation in line with the many ways that data is now intertwined with our daily lives as consumers and professionals.

As the amount of personal data collected and held by organisations rises, so does the responsibility for its secure storage and ethical use. Regulators recognised that the existing laws were insufficient to manage the rapid evolution of data application and privacy in an increasingly fast-paced digital landscape. In response, the EU drafted the GDPR, a new set of comprehensive regulations, which was adopted by the European Parliament and Council in April 2016 and became directly applicable in member states from 25th May 2018.

Our Global Data Management Research 2018 found that over 80% of businesses recognise the opportunity data can bring to forming their strategy and almost three quarters also admit that it’s difficult to predict where the next data challenge is coming from. Whilst many organisations are finding that increasing volumes of data can make it difficult to meet regulatory requirements, 75% have seen a return on investment from the data quality solutions they have used within their business.

For businesses around the world who hold EU citizen data, we believe the GDPR will prove to create positive opportunities for organisations to evaluate and improve the management of their data and increase its value.

Key findings


believe that data has greatly disrupted their organisation in the last year


agree that it is often difficult to predict when and where the next data challenge will be


believe that increasing volumes of data make it difficult to meet their regulatory requirements


believe that the GDPR presents an opportunity to refine their data management strategy


see data as an integral part of forming a business strategy


see data as an integral part of forming a business strategy

7 ways that meeting the requirements of the GDPR can help to boost your business:



  • Enhanced customer experience
  • Ability to more accurately target new customers
  • More accurate lending decisions
  • Improved efficiency
  • Better communication with your customers
  • Clearer view of customer base and relationships
  • Added accountability, credibility and trust through transparency

The GDPR puts the interests of individuals at its core and it is likely to be used as a framework for a global model in the future of data protection regulation. Find out more about the 6 key elements of the GDPR here.

To help you thrive under the GDPR we have created 4 packages:

Data Cataloguing

Recognise the sensitive data landscape

Find and organise all the personal data that your organisation holds.

Core to the GDPR is visibility and control of the personal data your business holds. Our advanced discovery and data management technology service is tailored to the needs of your business to prosper under the GDPR.

Data Integrity

Take a Data Integrity Assessment

How reliable is your data? Quickly assess the quality of your data.

For a solid foundation under the GDPR, our data experts deliver robust data management technology and validation engines which are key to assessing the quality of your existing data.

Data Match

Responding to data subject requests

Ensure a swift and accurate response to individual requests for access to personal data.

Our unique data matching and pinning capabilities can be delivered as a service and on-premise solution which means you can identify, resolve and tag individual data subjects when an access request is made.

Data Breach

Preparing for and managing data breaches

Prepare, know and react to a potential data breach within your organisation.

In a digital age, the security of the personal data you hold is paramount and you need to be prepared should a data breach occur. We provide an end-to-end data breach service and support to guide you through prevention, protocol and best practice.

Please note that while we can support businesses with their preparations for the GDPR, we cannot offer legal counsel or compliance advice.

What would you like to do next?

*Experian/Consumer Intelligence ‘Data Preferences’ Survey, 2016

† Data controller – an individual, organisation, corporate or unincorporated body of persons who decide the purpose and manner of data processing.
Data Processor – any person (other than an employee of the data controller) who processes the data on behalf of the data controller.

Contact us

If you have any queries, please don't hesitate to contact us and a member of our team will be happy to help.

Call us on 0844 481 9914 or email us here with your enquiry.