What are the Data Protection Regulations?
Currently data protection in the UK is regulated by the Data Protection Act 1998.
On 25th May 2018 the Data Protection Act will be replaced by the European General Data Protection Regulations (GDPR).
GDPR gives more rights to individuals in the processing of their personal data which means that individuals can request access, corrections and removal of their personal information in ways that weren’t available before. There is also a focus on transparency with privacy notices detailing how data will be used and a requirement for procedures documenting exactly how data will be processed and secured.
The new regulation requires clearer evidence of consent from individuals and some methods of recording consent will no longer be valid. Additionally, GDPR gives greater powers to the ICO (Information Commissioner’s Office) to investigate organisations and breaches.
Click here to view the eblast.