Get ready for the new data protection rules

12th September 2017

The government is to introduce new data protection rules under the General Data Protection Regulation (GDPR) which takes effect from 25 May 2018.

Under the GDPR businesses will have increased obligations to safeguard the personal information of individuals which is stored by the business. These rules apply to the information of customers, suppliers or employees. Generally for those who are currently caught by the Data Protection Act it is likely that you will have to comply with the GDPR.

GDPR will apply to data ‘controllers’ and ‘processors.’ Processing is about the more technical end of operations, like storing, retrieving and erasing data, whilst controlling data involves its manipulation in terms of interpretation, or decision making based on the data. The data processor processes personal data on behalf of a data controller. Obligations for processors are a new requirement under the GDPR.

The GDPR applies to personal data which is wider than under the Data Protection Act (DPA).

One key change to the current DPA rules is that those affected will have to show how they have complied with the rules. Proof of staff training and reviewing HR policies are examples of compliance.

Under GDPR, higher standards are set for consent. Consent means offering people genuine choice and control over how their data is used.

Overall, the aims of GDPR are to create a minimal data security risk environment, and to protect personal data to rigorous standards. For most organisations, this will entail time and energy getting up to speed with compliance procedures. Reviewing consent mechanisms already in place is likely to be a key priority. In practice, this means things like ensuring active opt-in, rather than offering pre-ticked opt-in boxes, which become invalid under the new rules.

Organisations will also have to think about existing DPA consents. The ICO’s advice is that:

‘You should review how you seek, record and manage consent and whether you need to make any changes. Refresh existing consents now if they don’t meet the GDPR standard.’

Where the current consents do not meet the new GDPR then action will be needed.

The fines for non compliance are severe at up to 20 million euros or 4% of total worldwide annual turnover (if higher).

The Information Commissioner’s Office (ICO) has published some very useful information and a 12 step planning guide to help organisations get ready ahead of the May 2018 deadline.

 

 

For further information and advice get in contact with our team at Decisive:IT who can offer practical advice and take you through the steps you need to take to ensure you are compliant with the upcoming GDPR changes.

 

Other helpful links: ICO getting ready GDPR 12 steps.pdf



 
Other items in Blogs
 
James Cater
28th June 2018 Understanding Tax Relief Restrictions

Although we hear of decline in the value of development land, particularly for larger developments, growing houses continues to be more attractive to many than growing crops. Onerous Section 102 levies may apply but the tax regime remains gentle. It should not however be assumed that tax reliefs will be available automatically. Legislation imposes qualifying…

Read More »

Vanessa Pearson
28th June 2018 Career Change? Think Contracting.

There are many benefits over employment, writes Whiting & Partners Contract Specialist, Vanessa Pearson   Changing careers can be a challenge but leaving the employment wage treadmill to become a contractor can increase your earnings, saving on tax and national insurance as well as providing more flexible working hours. Contractors are essentially self-employed individuals who…

Read More »

Daniel Coleman
28th June 2018 Making Tax Digital – Moving Your Company Forward

You, like many businesses have been successfully running for years, maintaining your books and records and submitting correct VAT returns, in turn ticking all the necessary boxes and satisfying HMRC. However, the introduction of MTD will mean a ‘shake up’ to your current methods and may require you to adopt software for the first time.…

Read More »

Philip Peters
28th June 2018 Trading Allowances Change

Do you remember when eBay first emerged and become a revolutionary trading platform for buying or selling and, yes, turning a profit? As social-media has expanded, so have trading websites to the extent that there’s hardly a town, village or group that does not have a ‘buy’n sell’ page.   HM Revenue & Customs have…

Read More »

Jaimie Lane
27th June 2018 Charity annual returns – changes ahead

Later this year The Charity Commission will introduce a tailored annual return which will include some new questions which may require preparation in advance. Overseas expenditure As these new questions will likely require additional preparation, they will be optional for 2018 but become mandatory for 2019 onwards: When spending money outside England and Wales, did…

Read More »

Vanessa Pearson
18th June 2018 Public Sector contractor wins IR35 case

HMRC have lost a second IR35 case this year, and their second case against the same contractor, putting into doubt their own understanding of the IR35 rules. Ian Wells, director of personal service company Jensal Software Limited provided his services to the Department of Work and Pensions via a recruitment agency during 2012 and 2013.…

Read More »