The clock is ticking, as GDPR reality gets closer and closer. As set out in this article, it provides for enhanced protection for individuals - including the right to erasure "requiring an organisation to delete the personal data it holds and to cease processing it any further." (Brexit will have no affect on an organisation's need to be compliant.)
To be able to comply with these rights, organisations need to be fully aware of where they hold data relevant to GDPR. This is not something that everyone is prepared for.
Do you know every place where private data exists within your organisation? With time pressing on, now is the time to start pushing ahead with plans for GDPR compliance before it becomes too late to implement any major changes.
The GDPR preserves the rights provided under the current law and also provides new rights and enhanced protection for individuals, who are known as “data subjects”. Failure to comply with the provisions of the GDPR may lead to greatly increased monetary sanctions, so it is critical that any organisations processing personal data are aware of the changes.