{"id":13348,"date":"2017-04-05T09:13:40","date_gmt":"2017-04-05T08:13:40","guid":{"rendered":"https:\/\/www.policybee.co.uk\/blog\/?p=13348"},"modified":"2025-12-04T13:33:16","modified_gmt":"2025-12-04T13:33:16","slug":"gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme","status":"publish","type":"post","link":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme","title":{"rendered":"GDPR for small businesses: what it means for you"},"content":{"rendered":"<div class=\"wp-block-image is-resized\">\n<figure class=\"alignright\"><img loading=\"lazy\" decoding=\"async\" width=\"600\" height=\"300\" src=\"https:\/\/www.policybee.co.uk\/blog\/wp-content\/uploads\/2017\/04\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288.jpg\" alt=\"GDPR for small businesses means new ways of treating data and fines for those who don't comply.\" class=\"wp-image-19322\" style=\"object-fit:cover;width:300px;height:150px\" srcset=\"https:\/\/www.policybee.co.uk\/blog\/wp-content\/uploads\/2017\/04\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288.jpg 600w, https:\/\/www.policybee.co.uk\/blog\/wp-content\/uploads\/2017\/04\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288-300x150.jpg 300w\" sizes=\"auto, (max-width: 600px) 100vw, 600px\" \/><\/figure>\n<\/div>\n\n\n<p>We\u2019ve already talked about how, on 25 May 2018, <a href=\"https:\/\/www.policybee.co.uk\/blog\/new-data-protection-regulation-out-with-the-data-protection-act-in-with-gdpr\" target=\"_blank\" rel=\"noreferrer noopener\">the General Data Protection Regulation (GDPR) replaces the Data Protection Act 1998<\/a>. In case you missed it, this is to make data collection rules consistent across the EU.<\/p>\n\n\n\n<p>Regardless of what happens with Brexit, it\u2019s important to note that GDPR still applies if a non-EU company processes the personal data of anyone living in the EU. And it affects <em>all<\/em> businesses, meaning GDPR for small businesses is a reality, just as much as it is for large corporations.<\/p>\n\n\n\n<p>With large fines promised for those who don&#8217;t comply with the new regulation, it\u2019s a good idea to know where you stand. Particularly as one of the biggest considerations is making sure \u2018sensitive data\u2019 is handled correctly.<\/p>\n\n\n\n<p>Of course, knowing what is and isn\u2019t \u2018sensitive data\u2019 is the first thing to be clear about.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Do I hold potentially sensitive data?<\/strong><\/h2>\n\n\n\n<p>Never before have we shared so much personal data with businesses. Never before have businesses placed so much value on this data. And never before have more companies collected and stored sensitive data without knowing it. <\/p>\n\n\n\n<p>Let\u2019s look at a few examples:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>A virtual assistant helps a client with a direct mail campaign and holds data including home addresses, employer and work addresses, age groups etc. This is stored in the cloud and then shared with a distribution company that sends the mail. GDPR says explicit consent for both parties to use this information is needed.<\/li>\n\n\n\n<li>Past and present personal data in HR records is a potential target for hackers, and it\u2019s your responsibility to make sure it\u2019s absolutely secure. Any third party request to access this information is subject to the employee (or ex-employee) giving consent.<\/li>\n\n\n\n<li>Health professionals such as physiotherapists and chiropractors through to homeopaths and reflexologists might ask patients to complete a form about their wellbeing prior to treatment. If this information isn\u2019t stored in line with the new data regulations, it could be in breach of them.<\/li>\n<\/ul>\n\n\n\n<p>In fact, any company or individual providing marketing, IT, accountancy or other business support may have access to a wealth of client and customer data. GDPR says this now needs to be collected, stored and protected in specific ways in case of a breach.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Breach club<\/strong><\/h2>\n\n\n\n<p>While everyone\u2019s talking about high-profile hacks and attacks (and sadly these are genuine threats), cyber breaches come in all shapes and sizes.<\/p>\n\n\n\n<p>A member of staff accidentally leaving a laptop containing customer data on a train could leave your business vulnerable. Similarly, a disgruntled member of staff could access data that they shouldn\u2019t. Data can also be deleted or lost from something as innocuous as a power outage, causing an IT system to fail.<\/p>\n\n\n\n<p>The point is that most businesses hold some sort of data that could be lost, changed or viewed without authorisation. Businesses ignoring the GDPR do so at their peril.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>How can I prepare a GDPR for small businesses data protection strategy?<\/strong><\/h2>\n\n\n\n<p>The GDPR requires that larger businesses or public authorities carrying out large-scale data handling appoint a Data Protection Officer. While GDPR for small businesses doesn&#8217;t demand the same, it\u2019s good practice to make sure data handling is a specific person\u2019s job. That person then has responsibility for the following:<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>Carrying out data protection impact assessments to determine what kind of personal information has been, is being or will be collected. Also the collection method, how it\u2019s used, transferred and stored, why it might be shared and how it\u2019s protected.<\/li>\n\n\n\n<li>Carrying out regular internal audits of data collection and storage processes, making amendments where necessary.<\/li>\n\n\n\n<li>Making sure all staff are up-to-date with data protection training and that new joiners are aware of and understand processes and procedures.<\/li>\n\n\n\n<li>Taking a view on any new technology, software and marketing initiatives to ensure they comply with GDPR.<\/li>\n\n\n\n<li>Forming a crisis group before you need one. Specific people trained to take the lead if the worst happens can help reduce the impact on your business.<\/li>\n<\/ol>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Get in line<\/h2>\n\n\n\n<p>GDPR for small businesses is here to stay. Ignore it at your peril.<\/p>\n\n\n\n<p>The harsh reality is that failure to plan for and comply with the new regulations could mean much more than a slap on the wrist. There are tough new penalties of up to <strong>4% of your annual revenue<\/strong> or <strong>\u20ac20m<\/strong>. And that\u2019s before the potential damage to your business\u2019s reputation and indirect loss of income, too.<\/p>\n\n\n\n<p>Can you afford to not be ready?<\/p>\n\n\n\n<p> <em>Image used under license from Shutterstock.<\/em> <\/p>\n","protected":false},"excerpt":{"rendered":"<p>We\u2019ve already talked about how, on 25 May 2018, the General Data Protection Regulation (GDPR) replaces the Data Protection Act 1998. In case you missed it, this is to make data collection rules consistent across the EU. Regardless of what &hellip; <a href=\"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":12,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[132],"tags":[142,158,162,98,143,140],"class_list":["post-13348","post","type-post","status-publish","format-standard","hentry","category-small-business-advice","tag-accountants","tag-cyber-insurance","tag-it-and-technology","tag-marketing-2","tag-rules-and-regulations","tag-running-a-business"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.3 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\r\n<title>GDPR for small businesses<\/title>\r\n<meta name=\"description\" content=\"We look at GDPR for small businesses: your responsibilities, the new rules on handling data, and what happens if you don&#039;t comply.\" \/>\r\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\r\n<link rel=\"canonical\" href=\"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme\" \/>\r\n<meta property=\"og:locale\" content=\"en_GB\" \/>\r\n<meta property=\"og:type\" content=\"article\" \/>\r\n<meta property=\"og:title\" content=\"GDPR for small businesses\" \/>\r\n<meta property=\"og:description\" content=\"We look at GDPR for small businesses: your responsibilities, the new rules on handling data, and what happens if you don&#039;t comply.\" \/>\r\n<meta property=\"og:url\" content=\"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme\" \/>\r\n<meta property=\"og:site_name\" content=\"PolicyBee news and risk advice\" \/>\r\n<meta property=\"article:published_time\" content=\"2017-04-05T08:13:40+00:00\" \/>\r\n<meta property=\"article:modified_time\" content=\"2025-12-04T13:33:16+00:00\" \/>\r\n<meta property=\"og:image\" content=\"https:\/\/www.policybee.co.uk\/blog\/wp-content\/uploads\/2017\/04\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288.jpg\" \/>\r\n\t<meta property=\"og:image:width\" content=\"600\" \/>\r\n\t<meta property=\"og:image:height\" content=\"300\" \/>\r\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\r\n<meta name=\"author\" content=\"Kate Naqvi\" \/>\r\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\r\n<meta name=\"twitter:creator\" content=\"@PolicyBee\" \/>\r\n<meta name=\"twitter:site\" content=\"@PolicyBee\" \/>\r\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Kate Naqvi\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\r\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme\"},\"author\":{\"name\":\"Kate Naqvi\",\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/#\\\/schema\\\/person\\\/02f6db3fba7701d6c2445913ab17816b\"},\"headline\":\"GDPR for small businesses: what it means for you\",\"datePublished\":\"2017-04-05T08:13:40+00:00\",\"dateModified\":\"2025-12-04T13:33:16+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme\"},\"wordCount\":767,\"commentCount\":0,\"image\":{\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/wp-content\\\/uploads\\\/2017\\\/04\\\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288.jpg\",\"keywords\":[\"accountants\",\"cyber liability insurance\",\"IT and technology\",\"marketing and advertising\",\"rules and regulations\",\"running a business\"],\"articleSection\":[\"Small business advice\"],\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme\",\"url\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme\",\"name\":\"GDPR for small businesses\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/wp-content\\\/uploads\\\/2017\\\/04\\\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288.jpg\",\"datePublished\":\"2017-04-05T08:13:40+00:00\",\"dateModified\":\"2025-12-04T13:33:16+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/#\\\/schema\\\/person\\\/02f6db3fba7701d6c2445913ab17816b\"},\"description\":\"We look at GDPR for small businesses: your responsibilities, the new rules on handling data, and what happens if you don't comply.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#primaryimage\",\"url\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/wp-content\\\/uploads\\\/2017\\\/04\\\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288.jpg\",\"contentUrl\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/wp-content\\\/uploads\\\/2017\\\/04\\\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288.jpg\",\"width\":600,\"height\":300},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"GDPR for small businesses: what it means for you\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/\",\"name\":\"PolicyBee news and risk advice\",\"description\":\"Articles and information on professional indemnity insurance, small business news and risk management\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.policybee.co.uk\\\/blog\\\/#\\\/schema\\\/person\\\/02f6db3fba7701d6c2445913ab17816b\",\"name\":\"Kate Naqvi\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/8a33feb6cf67ac6e21b99012a2d84120bda44ab9a697ad10265385d5fb819943?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/8a33feb6cf67ac6e21b99012a2d84120bda44ab9a697ad10265385d5fb819943?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/8a33feb6cf67ac6e21b99012a2d84120bda44ab9a697ad10265385d5fb819943?s=96&d=mm&r=g\",\"caption\":\"Kate Naqvi\"}}]}<\/script>\r\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"GDPR for small businesses","description":"We look at GDPR for small businesses: your responsibilities, the new rules on handling data, and what happens if you don't comply.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme","og_locale":"en_GB","og_type":"article","og_title":"GDPR for small businesses","og_description":"We look at GDPR for small businesses: your responsibilities, the new rules on handling data, and what happens if you don't comply.","og_url":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme","og_site_name":"PolicyBee news and risk advice","article_published_time":"2017-04-05T08:13:40+00:00","article_modified_time":"2025-12-04T13:33:16+00:00","og_image":[{"width":600,"height":300,"url":"https:\/\/www.policybee.co.uk\/blog\/wp-content\/uploads\/2017\/04\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288.jpg","type":"image\/jpeg"}],"author":"Kate Naqvi","twitter_card":"summary_large_image","twitter_creator":"@PolicyBee","twitter_site":"@PolicyBee","twitter_misc":{"Written by":"Kate Naqvi","Estimated reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#article","isPartOf":{"@id":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme"},"author":{"name":"Kate Naqvi","@id":"https:\/\/www.policybee.co.uk\/blog\/#\/schema\/person\/02f6db3fba7701d6c2445913ab17816b"},"headline":"GDPR for small businesses: what it means for you","datePublished":"2017-04-05T08:13:40+00:00","dateModified":"2025-12-04T13:33:16+00:00","mainEntityOfPage":{"@id":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme"},"wordCount":767,"commentCount":0,"image":{"@id":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#primaryimage"},"thumbnailUrl":"https:\/\/www.policybee.co.uk\/blog\/wp-content\/uploads\/2017\/04\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288.jpg","keywords":["accountants","cyber liability insurance","IT and technology","marketing and advertising","rules and regulations","running a business"],"articleSection":["Small business advice"],"inLanguage":"en-GB","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme","url":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme","name":"GDPR for small businesses","isPartOf":{"@id":"https:\/\/www.policybee.co.uk\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#primaryimage"},"image":{"@id":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#primaryimage"},"thumbnailUrl":"https:\/\/www.policybee.co.uk\/blog\/wp-content\/uploads\/2017\/04\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288.jpg","datePublished":"2017-04-05T08:13:40+00:00","dateModified":"2025-12-04T13:33:16+00:00","author":{"@id":"https:\/\/www.policybee.co.uk\/blog\/#\/schema\/person\/02f6db3fba7701d6c2445913ab17816b"},"description":"We look at GDPR for small businesses: your responsibilities, the new rules on handling data, and what happens if you don't comply.","breadcrumb":{"@id":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#primaryimage","url":"https:\/\/www.policybee.co.uk\/blog\/wp-content\/uploads\/2017\/04\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288.jpg","contentUrl":"https:\/\/www.policybee.co.uk\/blog\/wp-content\/uploads\/2017\/04\/woman-looking-across-to-GDPR-across-gap-graphic-shutterstock-1090250288.jpg","width":600,"height":300},{"@type":"BreadcrumbList","@id":"https:\/\/www.policybee.co.uk\/blog\/gdpr-what-does-the-transition-from-the-data-protection-act-to-the-general-data-protection-regulation-mean-for-my-sme#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.policybee.co.uk\/blog"},{"@type":"ListItem","position":2,"name":"GDPR for small businesses: what it means for you"}]},{"@type":"WebSite","@id":"https:\/\/www.policybee.co.uk\/blog\/#website","url":"https:\/\/www.policybee.co.uk\/blog\/","name":"PolicyBee news and risk advice","description":"Articles and information on professional indemnity insurance, small business news and risk management","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.policybee.co.uk\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Person","@id":"https:\/\/www.policybee.co.uk\/blog\/#\/schema\/person\/02f6db3fba7701d6c2445913ab17816b","name":"Kate Naqvi","image":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/secure.gravatar.com\/avatar\/8a33feb6cf67ac6e21b99012a2d84120bda44ab9a697ad10265385d5fb819943?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/8a33feb6cf67ac6e21b99012a2d84120bda44ab9a697ad10265385d5fb819943?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/8a33feb6cf67ac6e21b99012a2d84120bda44ab9a697ad10265385d5fb819943?s=96&d=mm&r=g","caption":"Kate Naqvi"}}]}},"_links":{"self":[{"href":"https:\/\/www.policybee.co.uk\/blog\/wp-json\/wp\/v2\/posts\/13348","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.policybee.co.uk\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.policybee.co.uk\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.policybee.co.uk\/blog\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/www.policybee.co.uk\/blog\/wp-json\/wp\/v2\/comments?post=13348"}],"version-history":[{"count":25,"href":"https:\/\/www.policybee.co.uk\/blog\/wp-json\/wp\/v2\/posts\/13348\/revisions"}],"predecessor-version":[{"id":27215,"href":"https:\/\/www.policybee.co.uk\/blog\/wp-json\/wp\/v2\/posts\/13348\/revisions\/27215"}],"wp:attachment":[{"href":"https:\/\/www.policybee.co.uk\/blog\/wp-json\/wp\/v2\/media?parent=13348"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.policybee.co.uk\/blog\/wp-json\/wp\/v2\/categories?post=13348"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.policybee.co.uk\/blog\/wp-json\/wp\/v2\/tags?post=13348"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}