|General Data Protection Regulation|
General Data Protection Regulation (GDPR)
The General Data Protection Regulation (GDPR), widely regarded as the biggest shake up of data protection law in 20 years, comes into force on 25 May 2018 and regardless of size, will affect every business located in the EU or trading with EU businesses which collects, stores or uses personal information.
There are therefore very few (if any) businesses in the UK for whom the GDPR will have no effect.
What has changed?
The new Regulation enhances individuals’ data protection rights and introduces a greater obligation for businesses to be transparent in how they use personal data.
All affected businesses are required to have appropriate policies and procedures in place to ensure that personal data is collected and processed lawfully. They will also need procedures to deal with Data Subject Access Requests (requests from individuals to provide details of all data held about them) and data breaches.
Individuals will have the right to ask data controllers to erase all data held on them and to obtain a copy of their own personal data in a structured and machine-readable format.
Greater data protection rights for individuals will inevitably increase the regulatory burden for organisations. However, it is also an excellent opportunity for organisations to be proactive and get the personal information they hold in order.
Why does it matter?
Changes under GDPR are aimed at moving companies away from a tick-box compliance attitude to the security and privacy of personal information, and towards a company-wide approach to managing the lifecycle of personal data.
The top ten key points are:
How can the AC help get you prepared?
We have put together an ebook “Discover how GDPR will affect your Coaching Business” to give you a better insight to the changes and what they mean to you as a coach. We will also be sending a series of emails over the coming weeks to give you further insight into Data Collection, Protection and Security. For further information visit our GDPR pages or the Information Commissioners Office.
Complimentary Webinar with Michael Brennan – “Getting Set for GDPR (a plain English Guide)”
Our complimentary webinar with Michael Brennan is now SOLD OUT. However, if you would like to register for the recording, please click below and enter your details. Once the webinar is made available you will be notified.
Over the coming weeks, the AC will be sending out a series of emails looking at the key points for GDPR and what they mean to you.
A copy of the legal text, including all the recitals, can be found on the EU legal website here.The Information Commissioner for the UK also has resources on their website for the requirements of the Data Protection Bill that is looking to revise the Data Protection Act to work with GDPR.