Whether you're interested in the smaller business community, are planning to start a business or have an existing business, we have a package for you.
Our most popular package is FSB Business Essentials which includes a whole range of benefits and products designed to make your business fly
A suite of legal benefits including a dedicated helpline, bundled insurance products and a range of online information to keep your business safe. Plus a whole range of negotiated benefits to help save you money and win business.
Our Business Creation package is designed to make starting a business simpler, allowing you time to focus on what's important - making it a success.
Specialist company formation benefits, access to FSB networking, business banking and a range of products to help get you setup in business.
Whatever your circumstances, we have a package to suit you and your business. Click the button below to see which benefits are included in each package and start your FSB journey.
'I just felt wow, I want to be part of this organisation so I joined.'
'Having someone there like the FSB who you can just call on for those other things you’re not quite sure on, it’s been invaluable.'
'What you can save by taking up some of the membership offers will save you your membership fee.'
We represent a diverse range of businesses from retailers to marketing agencies and just about everything in between. Take a look at more member stories and see how we could help your business fly.
More Member Stories
We offer three packages to suit your business needs. Joining FSB Connect is free, our Business Essentials package starts at £177 in the first year and our specialist Business Creation package has a fixed price of £133.
With the General Data Protection Regulation (GDPR) due to come into force in a year’s time (May 2018), every organisation will need to take steps to comply. There are exclusions to small businesses to some of the articles, but the majority will still be in force.
From 25 May 2018, any breach of the GDPR will result in fines for small businesses of up to €20 million. This is not just for a security breach but for a failure to implement the right level of technology to protect the data, or provide the relevant documentation. The following are areas small businesses should look at to ensure they meet the requirements:
A big area for investment (of time and possibly money) is understanding what data you have and where it is. The GDPR gives a EU resident the right to see, have amended or delete all personal data held. This includes backups and archives, and the whole process from request to completion has to be audited/proved, and completed within 30 days. Failure to do so is classed as a major breach and will incur the fine of up to €20 million.
You need to be able to protect from an ‘insider threat’ (your employees), which is where the vast majority of data breaches occur. Again, this incurs a major breach fine for failing to protect the data. This includes policies to protect against accidental breaches, such as having clearly communicated policies and ensuring data is where it should be, and malicious breaches, such as an employee leaving the company and corporate or national espionage. Steps are also required to prevent attacks such as phishing or contamination through ‘bring your own device’.
Have you any contracts with partners or other third parties where they process or control any personal data? Liability with GDPR is now jointly with the Data Processor and Data Controller, but contracts will need to be updated.
There is a general misconception that companies with fewer that 250 employees are exempt for the regulations. This is not true.
Some advisers are implying that all firms must employ a Data Protection Officer (DPO). This is incorrect. The designation of a DPO is not mandated according to company size, but rather the type of data processing. If a company is a public authority then a DPO is mandatory.
Most other organisations will need to designate a DPO, in particular if the core activities consist of processing operations which require regular and systemic monitoring of data subjects on a large scale, or processing special category data.
What is considered large scale is down to interpretation and legal advice should be sought. As a general rule, if the only personal data being processed is the payroll/HR data then a DPO would not be required. If, however, you are regularly processing personal data from sales CRM, mailshots and other activities then a judgement will need to be made.
The GDPR went live in April 2016 so is in force now. We are still part of the EU, and the penalties for non-compliance will be enforced from 25 May 2018, which means we will still be in for a further year past the enforcement date.
Even when we are out of the EU, the Information Commissioner’s Office (ICO), which is the Data Protection Authority in the UK, has announced that it will be taking the EU GDPR into UK legislation, so the UK will have its own version of GDPR. To comply with that will be at least as stringent as the EU version.
Legal protection covers various scenarios and ensures you and your business are covered
Don’t let late payments give you sleepless nights
GDPR one year on
Card Fraud: How Do I Protect My Business?