After several months of uncertainty, the Government has confirmed that the UK will be implementing the General Data Protection Regulation (GDPR). Speaking at the Culture, Media and Sports Committee on October 24, Secretary of State Karen Bradley MP said:
“We will be members of the EU in 2018 and therefore it would be expected and quite normal for us to opt into the GDPR and then look later at how best we might be able to help British business with data protection while maintaining high levels of protection for members of the public.”
As the UK wrestles with the implications of deciding to leave the European Union EU, many businesses were delaying the implementation of these new data protection laws. However, this news reaffirms the message that UK organizations need to act quickly and address their current approach to the collection, processing and use of customer data when it comes into force on May 25, 2018.
What is GDPR and how does it affect me?
The GDPR has been created to strengthen the data protection rights for EU individuals and this new legislation will affect any European member state business offering goods or services, as well as any company that does any form of trade with customers within the EU. The reformed laws aim to provide more consistent, comprehensive protection of personal data rights.
The announcement has been welcomed by the Information Commissioner’s Office (ICO), and the greater control the GDPR gives people over their personal data. In the ICO blog, UK Information Officer Elizabeth Denham said:
“Citizens want the benefits of these digital services but they want privacy rights and strong protections too. Having sound, well-formulated and properly enforced data protection safeguards help mitigate risks and inspire public trust and confidence in how their information is handled by business, third sector organizations, the state and public service.”
To understand the new obligations organizations have when keeping customer data safe, the new levels of transparency needed when using data, and to demonstrate accountability for compliance to the GDPR, we recommend reading the General Data Protection: A practical guide for businesses below.
This White Paper, created by BlueVenn in collaboration with data protection specialists Opt-4, provides a thorough look at how GDPR will change existing laws, and offers suggestions for what you can do now to prepare for GDPR. This White Paper also covers:
- The global scope of GDPR
- How GDPR will change consent, processing and profiling
- The new rights for data subject
- Guidelines for Data Protection Officers
- Liabilities, penalties and enforcement