GDPR For Hotels is designed to get you thinking and talking about your journey towards readiness for the GDPR.
This is a non-technical approach. I am neither a lawyer nor an IT expert. You will probably need opinions from both of these to complete your compliance efforts. However GDPR compliance is about so much more than your IT infrastructure and your legal agreements.
You will also need an appreciation and understanding of what GDPR is all about and what compliance really means. You will need to embrace it to the heart of your business. Somebody else will decide if you are compliant or not. The best you can hope to achieve is to be ready. Readiness is a behaviour and an attitude that runs throughout your business.
I decided to start this website after becoming a GDPR Practitioner. I am on the compliance journey too with no less than three businesses, one of which is based in the USA. So as I glean new nuggets of practical experience and insight I’ll share them here. I hold the International Association Of Privacy Professionals (IAPP) CIPP/E certification as a Certified Information Privacy Professional. I should point out that the views I express are my own and not those of IAPP.
The main reason for setting up the website was because the resources available about GDPR were pretty poor. They are improving, but only slowly, especially so for smaller businesses. Press articles on the subject are ridden with inaccuracies and often have particular agendas behind them. None of which are focused on helping you to achieve GDPR compliance and realising the benefits of good data privacy practice.
There is first class information available from the ICO in terms of what you should be doing, but precious little about the “how”. I know from my own experience as a hotel manager that understanding what needs to be done is very easy. Knowing how to do it takes experience, patience and skill. It is difficult – and taking the team with you is essential.
So books and websites that lob page after page of very dry, factually correct information about what can be an even drier subject are all very well. Somebody, somewhere needs to provide information and insight in an accessible, “layman” format. On a long train journey one wet Thursday night, as I read through the Articles and Recitals of the General Data Protection Regulations, I decided that somebody should be me.
This website is owned and operated by AllStrat Ltd. A company registered in Scotland No. SC231893. “GDPR For Hotels” is a registered trading identity of AllStrat Ltd. Business Name Registration number 2299121.
Allstrat Ltd is a member of the Direct Marketing Association (DMA)
Director: Allan Simpson CIPP/E
Contact email: firstname.lastname@example.org
Contact address: Suite 342, 8 Church Street, Inverness, IV1 1EA
Contact Telephone: 0333 1234 515