A survey conducted by Lolly, the EPoS and payment solution specialist, and The Institute of Hospitality suggests that one third (33 per cent) of the hospitality sector is still unaware of the upcoming GDPR legislation, which comes into force on 25 May 2018.
EU General Data Protection Regulation (GDPR) is intended to strengthen and unify data protection for all individuals within the European Union. It aims primarily to give control back to citizens over their personal data and to simplify the regulatory environment.
The survey also uncovered that nearly three quarters (73 per cent) of those surveyed wouldn’t know what to do if customers requested details of the data being held about them. And half (50 per cent) of respondents said they were not aware of how their methods of personal data processing will be impacted under the new regulations.
Four out of ten respondents were unsure as to whether their operational data is safely backed up. However, on a more encouraging note, more than half (57 per cent) of hospitality providers are confident in the systems they have in place.
Peter Moore, CEO of Lolly, said: “A number of the findings uncovered in the survey are alarming given organisations of every size are going to be affected by the GDPR legislation. This will include small hospitality providers with fewer in-house legal and IT resources.”
“GDPR is only around the corner. It is time to take action and get to grips with your data – before it becomes too late. The fines are high, up to €20m or up to four per cent of the annual worldwide turnover, whichever is greater.”
Peter Ducker FIH, chief executive at the Institute of Hospitality, added: “Getting ready for GDPR is a good opportunity for operators to spring-clean their databases. There is a tendency in organisations to hoard data and you will probably be surprised by how much data you hold – about customers, employees and suppliers – that is old, out-of-date or of no benefit to the business at all. That’s the first step. Then it’s a question of getting in touch with your customers and asking for their consent to be contacted. It is an opportunity to forge a new and more meaningful relationship with them.”
In order to get ready for GDPR, companies must:
- Review the types of personal data currently held on file (paper, audio or digital formats);
- Identify lawful grounds for collecting the data;
- Identify how the data can be kept correct and up-to-date;
- Identify redundant or erroneous data to cull, and
- Make a plan as to how ALL of this data is going to be kept secure.
Lolly is a Point of Sale (PoS) specialist serving small businesses across the UK in the hospitality industry; from coffee shops, pubs and night clubs, to mobile catering, pop ups and corporate caterers.
The company offers a complete point of sale package where customers can use its EPoS software on tills and PoS tablets. Lolly then networks these to card payment machines, to speed up service and provides a cloud-based back office, supplying real-time business analytics. The tills and software are designed to help businesses with their bottom line.
In February 2017, Lolly launched LollyPoS – the first Windows-based downloadable EPoS with integrated payment processing. The solution is designed to provide a simple, efficient and dependable point of sale solution anytime, anywhere.
Lolly provides enterprise level EPoS to hospitality and retail SMEs at an affordable price. Today, it is the only UK business of its kind that can truly scale from a downloadable product to a fully connected real-time network of tills, powered by an enterprise-level inventory reporting management system.
Find Lolly online:
 The survey opened on 3rd October 2017, 120 hospitality sector respondents