Data protection opening doors into Europe for SMEs
Digital processes

Data protection opening doors into Europe for SMEs

GDPR2DSM, the Office of the Data Protection Ombudsman and TIEKE joint project starting in November, will provide micro enterprises and SMEs with information and tools to help ensure effective data protection. Data protection builds trust in the operations of businesses and can bring new international business opportunities.

19.11.2020

Based on experiences and surveys, many small and medium-sized enterprises require extra information and support in data protection issues, both in Finland and elsewhere in Europe.

One of the objectives of the European Union’s General Data Protection Regulation (GDPR) is to reduce obstacles in the way of companies expanding into the EU’s single market. According to the Commission’s GDPR report published in June, some stakeholders find proper application of the GDPR challenging especially for SMEs, and businesses require more support to facilitate the application of the regulation. The GDPR2DSM project, which begins in November, was created to meet this need.

Data protection expertise and tools for SMEs

The Office of the Data Protection Ombudsman and TIEKE have been granted EU project funding in order to produce an easy-to-use tool for SMEs. The objective is to create a tool to enable SMEs to assess their data protection practices without prior expertise of data protection.

This project will strengthen SMEs’ ability to ensure their data processing practices meet the GDPR requirements.

“I hope that data protection is not seen as an expense, but as a facilitator of business and a competitive advantage.”

Anu Talus, Data Protection Ombudsman

Appropriate data protection practices help build trust in transactions between both consumers and businesses, along with providing SMEs with better opportunities to expand into the international market.

According to a recent Sitra survey, nearly half the SMEs in Finland had reservations regarding the possibilities of the data economy, and a fifth felt negatively towards the issue. According to the GDPR Small Business Survey conducted in four European countries in 2019, about half of SMEs were unsure whether they complied with the GDPR requirements.

“It is important for businesses to understand the value of data and data protection. I hope that data protection is not seen as an expense, but as a facilitator of business and a competitive advantage”, says Data Protection Ombudsman Anu Talus.

Improved data protection through co-development

The project will begin by identifying the data protection needs of SMEs and the challenges they have encountered. The results will serve as the project work guideline as well as a basis for co-development with businesses.

The objective of the project and the tool it was created to develop is to increase basic knowledge and assist SMEs and micro enterprises, especially those which find the application of the GDPR challenging. In the optimal scenario, this will also facilitate small businesses moving their operations into a digital environment and the EU’s single market.

What does GDPR2DSM mean?

The combination of letters in the name refers to the General Data Protection Regulation and the EU’s Digital Single Market.

The GDPR (General Data Protection Regulation) is a law regulating the processing of personal data, which was adopted in all EU countries in the spring of 2018.

DSM, in turn, refers to Europe’s Digital Single Market, whose development is primarily about removing national barriers to online business transactions.

Data protection is a valuable asset and a competitive advantage, both throughout the EU and globally. Ensuring proper data protection enables businesses to trade and cooperate more easily across borders, with international customers.

The longer version of the two-year GDPR2DSM project starting in November outlines the objective: GDPR opening doors to the digital single market: SME centric online tools and support for leveraging the opportunity.

The pilot phase of the project will be carried out in Finland, after which the results can be applied in other EU countries.

GDPR2DSM

  • A two-year project: The GDPR opens doors to the Digital Single Market with key online tools for SMEs and support for capitalising on opportunities.
  • The project is funded by the European Union’s Fundamental Rights, Equality and Citizenship Programme.
  • The Office of the Data Protection Ombudsman serves as the coordinator, with TIEKE Finnish Information Society Development Centre as the project partner. Innovation Manager Finland assisted in project preparation.

For more information contact:

  • Data Protection Ombudsman Anu Talus, anu.talus(at)om.fi, tel. +358 29 566 6766
  • Executive Director Hanna Niemi-Hugaerts, hanna.niemi-hugaerts(at)tieke.fi, tel. +358 40 674 9911
The content of this article represents the views of the author only and is his/her sole responsibility. The European Commission does not accept any responsibility for use that may be made of the information it contains.

Read next

Digital competences
Let the world know: Open badges for digital skills make expertise visible
Digital competences

Let the world know: Open badges for digital skills make expertise visible

With the rapid pace of technological development, continuous learning and updating of skills are essential. The nationwide digital skills badge constellation maintained by TIEKE Finnish Information Society Development Centre is a practical means of identifying and articulating digital skills. The constellation helps individuals to plan their careers, and companies to identify their staff’s skills.

Viestintätoimisto Aivela 09.04.2024
Sustainability
Is your association storing unnecessary data on its members?
Sustainability

Is your association storing unnecessary data on its members?

Many kinds of personal data, such as names, personal identity codes, addresses, allergy information, bank account numbers, dates of birth, photographs and videos are processed in hobby activities. Personal data cannot usually be stored indefinitely. Instead, a specific storage period must be defined for them, and the data must be erased when that period has elapsed. As a rule, personal data may only be stored for as long as necessary. Read the article for tips on the storage of personal data.

Iida Lautsi 08.04.2024
Sustainability
Why is personal data collected in hobbies and where can I get information on data processing?
Sustainability

Why is personal data collected in hobbies and where can I get information on data processing?

Has your child recently started a new hobby, and are you wondering why the club is asking for your child’s contact details or health information? Are you wondering how the club is processing the data you disclose to it? This article discusses typical situations related to the processing of personal data in hobbies and tells parents how they can obtain information on personal data processing from hobby organisers.

Emmi Iivonen 08.04.2024
Show all news

Follow us

TIEKE Finnish Information Society Development Centre is a non-profit organisation aiming to develop, improve and support the information society and all its digital endeavours. We take part in a wide range of strategic projects and have an important networking role in the public, private and third sector.