You better prepare, or it'll cost you... GDPR will be enforceable before you know it! In this blog, we explore the key considerations the modern CIO needs to be aware of.


There is now less than a year to go until the EU General Data Protection Regulation (GDPR) comes into force on 25th May 2018.

GDPR stands to significantly impact how companies handle customer data in the future. A failure to comply will expose businesses to fines of up to €20million or 4% of global turnover, whichever is greater – providing a strong incentive towards compliance.

As the deadline grows nearer, organisations must take action on GDPR now.

The cloud conundrum

Under the GDPR, organisations must obtain consent to use a customer’s data, be able to track all instances of customer data and then be able to delete this data on request.

This presents a huge challenge for CIOs; data volumes are increasing as organisations are using a growing number of both third-party cloud services, alongside their on-premise infrastructure.

As a result, organisations must ensure their data management processes are up-to-date so they can track sensitive customer information wherever it is stored – be it on a physical or virtual server – in order to stay compliant.

A new approach to data management

However, controlling data storage and sovereignty is far easier in an on-premise environment than a cloud environment.

Whilst a data owner has complete control of information stored in an on-premise environment, they have limited control over this data when it resides in a cloud provided by a third party. As a result, having a close relationship with a trusted cloud provider will be crucial, as under the regulation, any data breaches must be reported within 72 hours.  

To prepare for the GDPR, CIOs need to modernise their approach to data management today – this will include gaining full visibility into their entire IT infrastructure, to understand which cloud services are in use and where data is being stored.

Ultimately, data is the currency of today’s digital economy, and organisations must ensure customers, users and partners can have full confidence their data is properly used and adequately protected. Ensuring compliance with GDPR is the perfect opportunity to provide that peace of mind.

    Are you one of more than 50% of companies unprepared?

To ensure your company remains compliant whilst retaining the benefits of cloud computing, please see our portfolio of managed cloud services, or get in touch.


Get in touch by filling out this short form, and someone will get back to you as soon as possible.

Share this page

Do you want to stay up-to-date with COMPAREX UK, and learn about trending topics, news, events, career opportunities and more?

Follow COMPAREX UK on LinkedIn


GDPR is enforceable from 25th May 2018 after a two-year transition period. It intends to strengthen and unify data protection for all individuals within the European Union.

Learn about the legislation