Coming into effect in one year today, GDPR will fundamentally change how businesses can use consumer data. For individuals, it is an important step in ensuring privacy and consent in the data age.

However, too many big businesses are treating the regulation as either a nuisance or a terror. They are moving too slowly to be ready for GDPR’s introduction or are viewing it as a tick-box compliance exercise. Both approaches are expensive, misguided and wasteful.

Meanwhile, far too few SMEs understand GDPR or how it will impact their business.

Businesses that act now can prosper from GDPR. It does not have to be a burden, but can instead be an opportunity. It enables businesses to totally reframe their consumer relationships, build trust and deliver more valuable services.

By acting now and thinking big, some businesses will gain significantly from GDPR. Those that don’t risk becoming tomorrow’s Blockbuster, Woolworths or Yahoo.

Consumers may not see an immediate impact from GDPR, other than noticing clearer efforts by businesses to secure data consent. However, the long-term effect could be huge if businesses build trust with consumers.

We predict that everything from buying a house to finding an insurance policy to getting an energy tariff will become easier and cheaper as data sharing is increased and services improved. The regulation could even save lives, with cars potentially being able to access and use health data to stop before a driver experiences an epileptic fit.

The regulation, which will demand far greater levels of consent from consumers, presents an opportunity for forward-thinking businesses to create new services and products that reward customer consent. Built on trust and transparency, these digital services will save customers time and money while enabling businesses to access and use customer data. Businesses that embrace this opportunity, they claim, will overtake those that sink money into simply being compliant or ignore the regulation altogether.

Companies that rely on data – such as those in adtech, loyalty, data brokerage and credit referencing – are set to be the most disrupted, while those that work in energy, financial services and telecoms are likely to be the most prepared since they are already regulated to a lesser extent.


By Liz Brandt, CEO at Ctrl-Shift


GDPR Summit will help businesses to prepare to meet the requirements of the GDPR ahead of May 2018 and beyond.

Further information and conference details are available at

The GDPR Summit Series has been specifically designed for business generalists rather than data protection or privacy specialists and will provide delegates with a comprehensive picture of the new regulations and a practical understanding of the implications and legal requirements needed for compliance.

PrivSec Conferences will bring together leading speakers and experts from privacy and security to deliver compelling content via solo presentations, panel discussions, debates, roundtables and workshops.
For more information on upcoming events, visit the website.

comments powered by Disqus