Get ready for the new data protection rules

12th September 2017

The government is to introduce new data protection rules under the General Data Protection Regulation (GDPR) which takes effect from 25 May 2018.

Under the GDPR businesses will have increased obligations to safeguard the personal information of individuals which is stored by the business. These rules apply to the information of customers, suppliers or employees. Generally for those who are currently caught by the Data Protection Act it is likely that you will have to comply with the GDPR.

GDPR will apply to data ‘controllers’ and ‘processors.’ Processing is about the more technical end of operations, like storing, retrieving and erasing data, whilst controlling data involves its manipulation in terms of interpretation, or decision making based on the data. The data processor processes personal data on behalf of a data controller. Obligations for processors are a new requirement under the GDPR.

The GDPR applies to personal data which is wider than under the Data Protection Act (DPA).

One key change to the current DPA rules is that those affected will have to show how they have complied with the rules. Proof of staff training and reviewing HR policies are examples of compliance.

Under GDPR, higher standards are set for consent. Consent means offering people genuine choice and control over how their data is used.

Overall, the aims of GDPR are to create a minimal data security risk environment, and to protect personal data to rigorous standards. For most organisations, this will entail time and energy getting up to speed with compliance procedures. Reviewing consent mechanisms already in place is likely to be a key priority. In practice, this means things like ensuring active opt-in, rather than offering pre-ticked opt-in boxes, which become invalid under the new rules.

Organisations will also have to think about existing DPA consents. The ICO’s advice is that:

‘You should review how you seek, record and manage consent and whether you need to make any changes. Refresh existing consents now if they don’t meet the GDPR standard.’

Where the current consents do not meet the new GDPR then action will be needed.

The fines for non compliance are severe at up to 20 million euros or 4% of total worldwide annual turnover (if higher).

The Information Commissioner’s Office (ICO) has published some very useful information and a 12 step planning guide to help organisations get ready ahead of the May 2018 deadline.

 

 

For further information and advice get in contact with our team at Decisive:IT who can offer practical advice and take you through the steps you need to take to ensure you are compliant with the upcoming GDPR changes.

 

Other helpful links: ICO getting ready GDPR 12 steps.pdf



 
Other items in Blogs
 
Richard Alecock
12th September 2019 “Get ready for Brexit” workshops

  The Department for International Trade is hosting “Get ready for Brexit” workshops across the East region, each running from 11:30 – 13:30 followed by a networking lunch.   Please see the link below for dates and venues.   http://x.email.ukti.gov.uk/ats/msg.aspx?sg1=6a523609b267f7129747b384f8f21e3e

Read More »

Steven Denton
10th September 2019 Employer allowance – is it worth the hassle?

The £3000.00 employer allowance ceases at the end of the current tax year. From April 2020 employers will have to re-apply for a di minimis state aid based allowance.   A new HMRC checklist will have to completed to declare the following;   NIC contributions in the previous tax year were beneath £100,000; Confirmation that…

Read More »

Daryl Smith
10th September 2019 DELAYED – Domestic Reverse Charge VAT for Construction Services!

Brexit strikes again!  It appears that dreaded “B” word is not only good for grabbing headlines but also for causing H M Revenue & Customs a fair number of headaches.  Brexit has been blamed by the Revenue for everything from extended hold times on their phone lines to the delay in implementing their Making Tax…

Read More »

Jonathan Moore
5th September 2019 Gift Aid Guidance Update

HM Revenue & Customs have updated their Gift Aid for charities guidance.   In particular, the tables under sections titled The Benefit Rule, Charity Auctions and Educational School trips have been updated the latter of which will be of interest to charities involved in the running of schools and Educational Trusts.   The updated guidance…

Read More »

Karen Moore
3rd September 2019 National Payroll Week – Keeping the UK Paid

2019 marks the 21st Anniversary of National Payroll Week which is from 2 to 6 September 2019.   National Payroll Week recognises and celebrates the importance of payroll in business and the UK economy.  Not many people may know that there are 1.3 million employers in the UK and that Payroll is the largest expenditure…

Read More »

Amanda Newman
23rd August 2019 Changes in VAT for Contractors and Subcontractors

Confused by the new CIS reverse charge VAT rules that come into effect from 1 October 2019, then HMRC have issued further guidance at https://www.gov.uk/guidance/vat-domestic-reverse-charge-for-building-and-construction-services#overview.   The basics are as from 1 October 2019 if you are a VAT registered subcontractor working for a contractor you will no longer be paid for the VAT element…

Read More »