Skip to content
General Data Protection Regulations GDPR - Speros - Savannah, GA

You may have heard some of the buzz going around about the General Data Protection Regulations (GDPR) that will be enforced in the European Union starting May 25, 2018. This regulation looks to bring stricter policy to European data security. GDPR has been designed to protect the Personally Identifiable Information of citizens of the European Union. In short, a website cannot collect a website visitor’s information without their explicit consent, and that they must be notified of any data breaches that may occur.

While you may think that GDPR won’t affect your business in the United States, think again. If your company processes the personal data of subjects in the European Union, regardless of your company’s location, you must comply with these regulations. In other words, you are affected if you have an online presence for your business that can be accessed by anyone in the world.

Impacts for Savannah

The tourism industry remains one of Savannah’s largest economic drivers. According to Visit Savannah, tourists contributed almost $3 billion to our city in 2017. Savannah is a premier travel destination for people all over the world. More and more people are researching Savannah businesses on the web to figure out how to make the best of their vacation. They want to know where they are going to stay, what activities they can do, and which restaurants they should enjoy.

Travel and booking agencies want to pay special attention to the requirements of GDPR. These companies are commonly processing payments and collecting personal data about their customers as they go through the booking process. Here are the requirements your business must follow to be compliant.

  1. Increased territory
    GDPR will be enforced for all companies that process the personal data of subjects living in the EU, regardless of the company’s physical location. It will also apply to companies that process personal data who offer goods or services to the EU citizens.
  2. Penalties
    Organizations in breach of GDPR can be fined. There is a tiered approach to distinguishing fines with the most being up to 4% of annual global turnover or 20 Million Euros (whichever is greater), for the most serious infringements.
  3. Consent
    Request for consent must now be easily accessible and clear to understand. It must also be just as easy to withdraw your consent.
  4. Breach Notification
    If a data breach occurs that may risk individual rights, then notification of the breach is mandatory in all member states and must be done within 72 hours of first becoming aware of the breach.
  5. Right to access and to be forgotten
    Data subjects have the right to obtain confirmation that personal data concerning them is being processed, where it’s being processed, and for what purpose. The subject also has a right to a copy of the data. Lastly, the subject has the right to request a withdrawal of their information being processed and for their data to be erased.
  6. Design and Privacy
    GDPR requires that the inclusion of data protection be included from the beginning of the designing of the system rather than be added on later.


"Great staff! immediately responsive to our urgent repair requests. They were meticulous in diagnosing our issues and made the repairs as quickly as they could. They are a pleasure to work with! Speros provided emergency repair service during a weekend when our cabling suffered accidental damage. Speros dispatched two technicians that worked tirelessly to restore the multiple severed fiber cables.  It was not long before the entire campus was back to normal.  It was exceptional and timely service by Speros."

Joan Strother
Savannah Country Day

"Speros has been our law firm's primary internet service provider for 10+ years. Rarely do I need to ask for a service work order because they are on top of regular maintenance. Recently, I was getting requests to reboot following critical software, asked to set reboots to be automatic after midnight, so it did not disrupt our workdays. Within 30 minutes of my request, it was done. THAT is good service. THANK YOU, SPEROS Team."

Doug Andrews
Andrews & Sanders Law Firm

"Have worked with Speros for over two decades mostly for old school landline requirements of my medical office.
Now have needed a website design.
In these extremely difficult times for all, I have found Heather, Esther, and Mary Elizabeth a phenomenal team to work thru this new endeavor for my private practice's needs."

Dr. Richard Roth
Roth Aviation Medical Services

"I am starting my own medical practice and have chosen Speros to assist with my logo design, website, IT support and phone systems. Great experience. The team at Speros is knowledgeable and professional."

Dr. Ismary De Castro
Savannah Endocrinology

"Everyone at Speros was very friendly and helpful. They communicated with our existing software/hardware management company and made it out to work on our network quickly on short notice, and had the whole issue solved in very little time. Will use this business again for our network needs. The tech that came out was amazingly easy to work with and was respectful of our hospitals covid-19 policies."

Anthony Phoumivong

"The biggest benefit of having Speros install and maintain our networking, servers, and backups have been the reliability. They provide professional, personalized service and have rapid response times. You can trust Speros to provide you with fast, professional service, and to resolve your complex issues quickly!"

Paul Waldhour
Paper Chemical Supply

"The biggest benefit of having Speros as our IT provider is their fast response times. Speros stays on top of your issues, and they follow through to make sure your problems are resolved correctly. They are a pleasure to work with!"

Ann Cowart
Oelschigs Nursery