Maximum number of cars added to compare list.

What's your postcode?

We need your postcode in order to provide accurate search results.

Enquire

Enter your first name
Enter your last name
Enter your phone number

Got a part exchange?

Tell us your reg plate and receive a part exchange valuation on your car?

What's this?

Compare cars side by side to save time clicking backwards and forwards between them.

General Data Protection Regulations (GDPR): questionnaire for members’ useBack

The new General Data Protection Regulations (GDPR) introduce new stricter requirements for keeping and using personal data. The deadline for compliance is 25 May 2018, breaches of the new rules will have major consequences both reputationally and monetarily due to the introduction of new draconian fines. It is imperative that businesses have a strategy for compliance in place as failure to comply will result in extremely harsh fines

To assist members in meeting the challenge of compliance, we have drawn up a questionnaire for you to send to your suppliers, manufacturers, DMS providers, insurers and finance houses. The questionnaire asks suppliers how they will use your data and ensure it is protected.  This will be an important step in ensuring you are compliant with the new regulations.  We have also drawn up a template covering letter outlining why this process is being carried out, it may be used by dealers when sending out the questionnaire.

The new requirements will have significant impact on dealers, in particular, on how they keep and secure customer data, and their ability to carry out direct marketing campaigns.  There is also an issue around the transferring of personal data to and from suppliers such as manufacturers and how these suppliers keep and use this data.  Preparing for compliance will take significant time and resources and putting in place a GDPR implementation programme is a critical priority to ensure that businesses can continue to use and share data in compliance with applicable laws.

Some of the crucial steps that businesses must be taking include:

  • Carrying out a data mapping exercise to understand how their data are being used
  • Reviewing contracts which include data processes and data sharing with third parties
  • Reviewing cases where data is processed based on consent
  • Ensuring current privacy notices have mandatory information required under GDPR
  • Appointing a Data Protection Officer (DPO) where necessary
  • Generally, being very careful with the language used in their documentation.

NFDA is holding a workshop on 6 July in Warwick with a further workshop to be held in the summer.  In addition, we have contacted manufacturers to request what steps they are putting in place to ensure compliance in May 2018 and that there is a co-ordinated industry approach.  If you require more information and to receive the questionnaire with template letter, please contact the NFDA on 01788 538303 or email louise.woods@mif.co.uk.

GDPR Guidance Timeline

11 April 2017: first workshop

6 July 2017: second workshop

+

Questionnaire and template letter

summer 2017: third workshop

etc.

 

 

 

25 May 2018 DEADLINE for compliance

Posted by Sue Robinson on 30/06/2017