The Biggest Shake-up in Data Protection Legislation in 30 Years – GDPR Is Coming!

GDPR (the EU General Data Protection Regulation) is the biggest shake-up in European data protection legislation for 30 years and it takes effect May 2018. Any business that collects or stores European citizens’ data, cloud service providers as well as data users, will be affected.

A lot of people have been talking about the risks and challenges so you might well be concerned about the impacts on you and your organisation.

You’ll need to be sure you comply but keep in mind these regulations can be a good thing for your company; GDPR will help to eliminate the many inconsistencies in the patchwork of national security and privacy laws that can make it tricky to do business in Europe.


With less than 18 months to go, most organisations are already taking action – focusing attention, resources and budget on establishing processes and systems to securely mitigate and manage digital and cyber risks. But off network and end of use assets also pose a potential data risk and require due diligence and management to secure, prevent data breaches and ensure compliance.

Controlled, certified, secure asset recovery/disposal is going to be more important than ever to ensure that data is properly managed and destroyed. If you don’t have this on your agenda, or lack the time to give it the attention it needs, consider how a qualified and expert third party might help you to manage your assets securely at end of life and put in place the measures to protect your business and the private data you hold.

Many national, multinational and global organisations, for whom protecting their brand is an imperative, use this approach today. For them it means:

  • A flexible, consistent process for retiring IT equipment
  • Effective management of each stage of the process, including transit, tracking, processing, security and resale or recycling
  • High integrity, process control and expert support globally
  • Data risk mitigation

Here’s an example. An international retailer is modernising its stores and IT infrastructure to make operational efficiencies and deliver a better customer experience.  They’re using our asset recovery services to support the disposal of some 6,000 servers and 25,000 workplace assets.  Their key objectives to mitigate data risk, simplify the process and release redundant IT to market more quickly thereby maximising second user value recoveries.

It also relates to government agencies. We undertake the disposal of redundant IT for one agency in the UK which has more than 300,000 users in over 2,000 locations so the security requirements are high.  In order to meet these requirements our Technology Renewal Centre in Erskine, Scotland, operates a fully licensed and successfully accredited lifecycle asset management service facility, consistent with the HMG IA Standard No. 5 (Secure Sanitisation) specification, and conforms to the United Kingdom Public Sector security requirements, against which it is subject to oversight and regular audit.

Our Technology Renewal Centres around the world, including Erskine, safely process, and responsibly recycle, an average of 5 million kilos of material every year. We are committed to maintaining customers’ brand credibility and security. As well as ensuring data security, we align to customers’ sustainability and environmental initiatives, managing global scope and capabilities with quality and consistency and driving revenue by monetizing no longer useful owned assets; this means that many projects are revenue generating.

Let us help streamline your IT asset recovery process.

John Woodcock

Author: John Woodcock

John Woodcock, Asset Management Manager, HPE Financial Services