GDPR & Your Cloud Supply Chain

Yes, yet another GDPR content piece. Bored yet?  GDPR as I predicted is appearing daily in article, blog, tweet, news item and more and will increase as we approach the May 25th deadline where this becomes an enforceable law.

Are you a Cloud Vendor (as we are at Natterbox), or a customer of a cloud platform?  Do you act as a data Controller or a Data processor?  What difference does this all mean and what has changed?

Those who have realised the implications and liabilities of GDPR and who have started to act, will have quickly also realised that this extends not only internally, but externally.

Everyone who needs to be GDPR compliant, let’s be honest that is most firms, should have started their process long before now, but many have not or have only performed less than should have been achieved at this date, being so close to the enforcement.

What is driving some firms already, is the realisation that they are being asked by customers for GDPR compliancy statements, questioned where they are in their process and being asked to provide a GDPR statement within RFI, RFQ and ITT responses.

Also on the CIO WaterCooler
“Good Security Governance” is not a Piece of Useless Consultant Jargon

You need to furnish your business and teams to be in a strong aligned position with GDPR, both in terms of the compliancy of your own business and also that of any solution you may be providing your clients. Is your product or service relevant to GDPR, does it positively or negatively affect the clients GDPR position?  Your team needs to know how they should answer customer questions around GDPR accurately on both counts.

Where is your GDPR public statement as a minimum (by the way, ours is at, what verbiage should they use in customer proposals and who is your internal go to person where they need further help or guidance?

From a Sales and Marketing perspective, you might feel GDPR is a pain, not your issue and one of the backroom boys to sort. Wrong!  GDPR will hit Marketing and Sales squarely between the eyes and quickly.  How you treat customers data, how you use it and behave will all reflect on your GDPR profile. Whether what you sell has any alignment at all, you as a business certainly must know your stuff around GDPR.

In terms of GDPR being verbally discussed with clients, do you know what and how your employees are replying? If a customer gives consent verbally for their data to be used or logged, how do you capture this proof?  Simply making a note in a CRM that ‘Sue said okay to add her to marketing list A’ will no longer be enough, you need evidence of consent. Electronically, such as through email or a web site this is invariably captured, but verbally?

Also on the CIO WaterCooler
Operating Model Lessons from the Fast Paced World of F1 - The First Lap

We are already seeing an increased discussion on the call recording function, businesses recognising the benefit of having these easily at hand against a customer record, not only for training purposes, but increasingly to aid compliance.

So, for GDPR the time is now, get your act together, consider what tools your team requires both from information and technology and quickly be putting them in place.  It has been made clear by the authorities that negligence will certainly not be a defence should you fail foul to a breach or raft of citizen complaints and as awareness of individuals rights and power grows we can all expect customers to start to invoke them.




Ian Moyse

Ian Moyse, is Sales Director at Natterbox, a Cloud Telephony provider and has over 30 years of experience in the IT Sector, with 25 of these in Leadership roles. He was named #1 on the top 100 cloud influencers list in 2015-2017 and #18 on the IOT influencers list.. He is recognised as a leading cloud Blogger and was listed in the EMEA top 50 influencers in Data Centres, Cloud & Data 2017. Ian can be followed on twitter here > In 2015 he was named 48th most connected on LinkedIn Worldwide and awarded a Linkedin Power Profile as a top 10 Influencer in the UK technology sector. Starting as a Systems Programmer at IBM in the mainframe environment, he has held senior positions in both large and smaller organisations including Senior Vice President for EMEA at CA and Managing Director of several UK companies.  Moyse has been keynote speaker at many events and runs one of the largest Channel Discussion Groups worldwide on LinkedIn. He sits on the board of Eurocloud UK and the Governance Board of the Cloud Industry Forum (CIF) and in early 2016 Ian was appointed to the Board of FAST (Federation Against Software Theft) as their cloud advisor. Other accolades to Ian's name include being awarded global 'AllBusiness Sales AllStar Award for 2010' and The 'European Channel Personality of the Year Award for 2011' and he was named by TalkinCloud as one of the global top 200 cloud channel experts in 2011 and listed on the MSPMentor top 250 list for 2011 which tracks the world's top managed services experts, entrepreneurs and executives. Ian was also given the accolade by Channelnomics of 2011 Influencer of the year for Europe Recognition: ✔ Sales Director of the Year 2015 (Institute of Sales & Marketing Awarded). ✔ Sits on the board Eurocloud UK & Governance Board of Cloud Industry Forum (CIF). ✔ 2014 Ranked 9th w/wide in top 50 most influential people in Sales Lead Management (SLMA) ✔ Klout Social Score 79 ✔ TalkinCloud global top 200 cloud channel experts 2011 ✔ Listed on MSPMentor Worldwide top 250 list for 2011 & 2014 ✔ Listed in top 25 of the w/wide SMB Nation 150 Channel Influencers list 2012 & 2013

Have Your Say:

CIO WaterCooler