Santa heard about the General Data Protection Regulation (GDPR) ages ago, but he didn’t think that it affected him! After all, he’s been getting Christmas so right for all these years what’s different now? Well, with the GDPR a lot’s changed, and nearly every organisation will be affected, including the Grotto…
Santa just didn’t realise how important the GDPR is, but it’s the most ambitious data protection legislation passed in the EU so far! It can all sound a bit bland, but almost every business will have to change its practices when it comes to acquiring, storing and using personal data. It even applies in the UK regardless of Brexit.
What do we mean by personal data? Names, birthdays, addresses, even genetic information! The GDPR extends the rights an individual – customer, employee or elf – has over how you control their personal data. Santa stores lots of personal data at the Grotto: he sees you when you’re sleeping, he knows when you’re awake, he knows if you’ve been bad or good… So of course the GDPR affects him!