The General Data Protection Regulations impacts any organisation that holds personal data such as information that can be used to identify an individual or sensitive personal data.
If your company processes personal data then the GDPR probably applies.The GDPR categorises a broad swathe of data, with examples such as name, email, location, IP address, and online behaviour as personal data. For example CCTV is used by many SME’s to prevent crime. If your CCTV captures images, of staff, customers or passer by, you are collecting personal data and you should already be registered as a data controller with the ICO.
State 21 working with our one of our partner companies Ferguson-West can provide you with a range of courses or workshops to support your business to comply with the regulations. See our Training Catalogue for options to meet your needs.