Described by the Information Commissioner as “the biggest change to data protection law for a generation”, the General Data Protection Regulation (GDPR) attempts to bring data protection into the age of “big data”. It comes into force across the whole of Europe (including the UK) on 25th May 2018 which means that, if you process personal data, you don’t have long to get your data, systems and policies up to date and compliant.
In addition, the Data Protection Bill, which will replace the Data Protection Act 1998, had its first reading in the House of Lords on 13 September 2017. It is liable to change during the parliamentary process but is intended to provide “a comprehensive and modern framework for data protection in the UK, with stronger sanctions for malpractice”.
If you would like a short (4 page) briefing document setting out what SMEs need to be doing right now, please drop an email to firstname.lastname@example.org. If you would like to attend a practical seminar in Milton Keynes on what the changes are and how to implement them, please sign up using this link: