Welcome to BANT. if you are a member, please

GENERAL DATA PROTECTION REGULATIONS (GDPR) – COUNTDOWN TO COMPLIANCE (9)

Legitimate interests is one of the six lawful bases for processing personal data (as detailed in a previous eblast).  The Document Controller spreadsheet example produced by BANT for a typical NT business identified a number of types of personal data that would use legitimate interest as the lawful basis for processing.  Where legitimate interest is used as the lawful basis it requires a Legitimate Interest Assessment (LIA) to justify its use.  This eblast summarises the ICO guidance on how to complete an LIA and provides a template of an LIA for a typical nutritional therapy business that can be adapted by members and a worked example.

Click here for the full eblast.