For the majority of UK businesses, a huge amount of time and resource was invested to become GDPR compliant in time for the May 2018 deadline. The cost of implementing GDPR was substantial, with a report by The Ministry of Justice estimating that the cost to UK business could be as high as £320 million a year, and £2.1 billion over fourteen years.
As the statistic suggests, the work to remain GDPR compliant is far from over and as we approach 2019, it is becoming increasingly clear to organisations that GDPR wasn’t a one-time investment project. Instead, GDPR is now a way of life for organisations and continued investment is needed to maintain compliance. The risks of failing to acknowledge this are substantial, with the potential to incur hefty fines if found to be in breach of compliance.