The Data Protection Act (DPA) has been around for some time. The General Data Protection Regulation (GDPR) brings the DPA up to date with today's technology, and has some serious implications for businesses.
The Data Protection Act was passed by Parliament in 1998 to control the way information is handled and to give legal rights to people who have information stored about them. It is a law designed to protect personal data stored on computers or in an organised paper filing system.
1998 was a long time ago when considering advances in technology. The world has changed significantly, with Google, Facebook, Apple and Microsoft all becoming monolithic corporations from then to now.
As a consequence, the Data Protection Act needed updating to make it relevant to today's technology enabled world.
Cue the GDPR
Formally known as the EU-GDPR (the EU bit has been dropped since Brexit), the General Data Protection Regulation (GDPR) brings into sharp focus the rights of the data subject (the individual to whom the data relates), and the responsibility of both the "data controller" and the "data processors" (the businesses holding/processing that data) to manage and protect the information that they hold.
What it means for businesses
For some businesses, the GDPR is huge. For others, not so much - but what's clear for all businesses is that getting ahead of this before the compliance deadline of the 25th May 2018 is essential.
The END of the grace period, and deadline for COMPLIANCE to the GDPR is 25th May, 2018
In brief, businesses need to understand:
- What data they hold
- Where the data is held
- Who has access to it, when and why
- How the data is secured
- Their legal basis for processing/holding the data (e.g. consent from the data subject)
Full information about our various GDPR training courses can be found on our Cyber Security and GDPR training page.
We also provide help to businesses trying to understand and implement the changes required to meet compliance to the GDPR. If you'd like our help, please get in touch:
01530 637 833
Share this article
If you found this article helpful, please Tweet, Pinterest, Linkedin, Facebook - do what you do to share it with others you think will benefit from reading it. Thank you!
If you'd like help with GDPR please
give us a call on: 01530 637 833
We look forward to speaking with you soon!