Blogs

GDPR Misconceptions by Small Business Owners

If you’re a small business owner, with few or no employees, you may think that the new GDPR regulations don’t affect you. But that’s not the case. There are a number of misconceptions around these rules and so we’ve identified three of these to help small business owners understand the impact of these regulations:

Misconception #1:

Small businesses are exempt. There is no exclusion under current GDPR for businesses with only a few or even no employees. GDPR it not about  your firm’s size it’s all about the data that you hold, where  you hold it, for how long you hold it and how you use it.

Misconception #2:

GDPR only relates to data that has been provided by users. Not true; it applies to all data generated, collected or related to a user, whether or not they provided it.

Misconception#3:

GDPR only applies to customer data? The legislation covers a far broader range of data or Personally Identifiable Information (PII) and applies to all personal data including that held on employees. This means that even data held internally, such as that used by the Finance and HR departments, will be subject to the same rules in terms of transparency, integrity, confidentiality and accessibility.

If you want to find out more about how the GDPR regulations will impact on your business, you can book into one of our informal, hour-long Action Plan for Employers’ work shop.

To book your place, click here or contact Alice Evans at HCHR on

Tel: 01792 234761
Email: alice@hchr.co.uk