Get ready for the new data protection rules

12th September 2017

The government is to introduce new data protection rules under the General Data Protection Regulation (GDPR) which takes effect from 25 May 2018.

Under the GDPR businesses will have increased obligations to safeguard the personal information of individuals which is stored by the business. These rules apply to the information of customers, suppliers or employees. Generally for those who are currently caught by the Data Protection Act it is likely that you will have to comply with the GDPR.

GDPR will apply to data ‘controllers’ and ‘processors.’ Processing is about the more technical end of operations, like storing, retrieving and erasing data, whilst controlling data involves its manipulation in terms of interpretation, or decision making based on the data. The data processor processes personal data on behalf of a data controller. Obligations for processors are a new requirement under the GDPR.

The GDPR applies to personal data which is wider than under the Data Protection Act (DPA).

One key change to the current DPA rules is that those affected will have to show how they have complied with the rules. Proof of staff training and reviewing HR policies are examples of compliance.

Under GDPR, higher standards are set for consent. Consent means offering people genuine choice and control over how their data is used.

Overall, the aims of GDPR are to create a minimal data security risk environment, and to protect personal data to rigorous standards. For most organisations, this will entail time and energy getting up to speed with compliance procedures. Reviewing consent mechanisms already in place is likely to be a key priority. In practice, this means things like ensuring active opt-in, rather than offering pre-ticked opt-in boxes, which become invalid under the new rules.

Organisations will also have to think about existing DPA consents. The ICO’s advice is that:

‘You should review how you seek, record and manage consent and whether you need to make any changes. Refresh existing consents now if they don’t meet the GDPR standard.’

Where the current consents do not meet the new GDPR then action will be needed.

The fines for non compliance are severe at up to 20 million euros or 4% of total worldwide annual turnover (if higher).

The Information Commissioner’s Office (ICO) has published some very useful information and a 12 step planning guide to help organisations get ready ahead of the May 2018 deadline.

 

 

For further information and advice get in contact with our team at Decisive:IT who can offer practical advice and take you through the steps you need to take to ensure you are compliant with the upcoming GDPR changes.

 

Other helpful links: ICO getting ready GDPR 12 steps.pdf



 
Other items in Blogs
 
Jeannette Hume
20th October 2020 Indexation Relief: Bank it

The Office of Tax Simplification (OTS) has been in consultation with individuals, businesses as well as professional advisers – including accountancy bodies – to review the capital gains tax system and see whether there is any scope to simplify the current tax system. The consultation process closes on 9th November 2020.   Speculation has been…

Read More »

Steven Denton
15th October 2020 Job Retention Bonus (JRS)

HMRC have announced more details on the Job Retention Bonus scheme they set forth in July. The JRS allows an employer to claim a one-off payment of £1000 per employee furloughed and claimed for through the CJRS and kept employed until at least 31st January. This money is to be paid to the employer and…

Read More »

Jaimie King
12th October 2020 AGM deadline extension for Charities

Due to Coronavirus, the Charity Commission had previously released guidance allowing Charities to postpone their scheduled AGMs to 30th September 2020, and allowing them to be held digitally.   This guidance has now been updated to allow postponement of AGMs to 30th December 2020.   The updated guidance can be viewed at – https://www.gov.uk/guidance/coronavirus-covid-19-guidance-for-the-charity-sector  

Read More »

Oliver Taylor
12th October 2020 What to do if your charity is facing financial difficulties?

In recent months many charities have found themselves in financial difficulties and an uncertainty of long-term survival, often caused by factors out of their control. Most notably the ongoing Covid-19 outbreak, which has had several knock-on effects such as a reduction in donation income or decreased operating capacity during the tightened lockdown rules. Other external…

Read More »

Ian Piper
9th October 2020 Pre-Packs: All change?

After many years of perceived abuse, the Government has announced that they are soon to introduce new laws to require stricter, independent, scrutiny where connected parties purchase a failed business out of liquidation. In announcing the move, the government said that while pre-pack administration sales are widely considered to be a valuable rescue tool, concerns…

Read More »

Ben Beech
8th October 2020 Countryside Productivity Small Grant Scheme – Round 3

  £25 million has been made available in the third and final round of The Countryside Productivity Small Grants Scheme. The scheme offers grants of between £3,000 and £12,000 to fund a wide range of new equipment and technology in an attempt to help farmers improve efficiency whilst also benefitting the environment.   Potential applicants…

Read More »