General Data Protection Regulation. Brace brace brace

The way personal data can be used is set to change with the EU’s NEW General Data Protection Regulation. And yes, Brexit means it is still going to happen. Here’s a brief look at what you need to know and do.

  1. The 1998 Data Protection Act will be replaced by GDPR.
  2. GDPR gives people the right to access information companies hold about them.
  3. Parents and guardians will also have control over where a child’s data is used.
  4. Companies have to provide the information within 30 days of a request.
  5. Companies must follow guidelines and get proper consent when collecting information.
  6. Fines will be tougher for non compliance or breach.
  7. Companies have 72 hours to notify people and the Information Commission about a breach.
  8. Businesses have until 25 May 2018 to get everything sorted (the law changed on 24 May 2016, there has been a two year transition).
  9. The maximum penalty for breaching the rules is £17.5m or 4% of global turnover, whichever is higher.
  10. Brexit makes no difference. The law is happening.

[It will] give consumers the confidence that their data is protected and those who misuse it will be held to account.

Matt Hancock, Minister of State for Digital






Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s