The UK’s third generation of data protection law has entered Parliament.
The Data Protection Bill was published on 14 September 2017 and aims to modernise data protection laws to ensure they are effective in the years to come.
This explains the relationship between the Bill and the GDPR, detailing the additional areas the proposed new legislation covers. It also includes links to the ICO’s GDPR and Law Enforcement pages and to a Data Protection Bill fact sheet.
When the General Data Protection Regulations (GDPR) come into effect next year there will no longer be a requirement to notify the Information Commissioner’s Office (ICO) as there is now.
There is a provision in the Digital Economy Act which means it will remain a legal requirement for data controllers to pay the ICO a data protection fee. These fees will be used to fund the ICO’s data protection work. As now, any money the ICO receives in fines will be passed directly back to the Government.
The new system will aim to make sure the fees are fair and reflect the relative risk of the organisation’s processing of personal data. The size of the data protection fee will still be based on the organisation’s size and turnover and will also take into account the amount of personal data it is processing. The final fees will be approved by Parliament before being put into place.
For the purposes of the Data Protection Act the quick definition is data which identifies a living individual.
The Information Commissioners Office has put together a quick reference guide to help. Please click here to access the guide which will open in a new window.
Why not join us for networking with a purpose
33 Emsworth Road,
Hampshire, PO9 2SN
Reputation Matters session
We have a great insight from an industry insider.
Why does Health & Safety just seems to get in the way of getting anything done these days?
£14 (cash only) on the door includes a light lunch
Reputation Advocates just £10 contribution to refreshments
The European Commission has proposed new regulations that would limit the way companies track users on the internet.
Part of that plan would see the removal of website banners that provide disclaimers on cookie policies and instead have the user’s browser preferences automatically apply to each site they visit. In addition companies will need to get explicit consent from a user before being allowed to track their online activities.
If passed, the new rules will come into effect by May 2018.
Read more… (opens in a new tab)
The ICO has issued a £60,000 fine to Boomerang Video Ltd after it suffered a cyber attack. An investigation by the ICO found the Berkshire-based company failed to take basic steps to stop its website being attacked.
Pub chain JD Wetherspoons has quite a fanbase in the UK, but the company has decided it’s safer to delete all its customer data than risk it being hacked.
The rules are changing on data protection, if you want to find out more, Rob from Crimson Crab will be talking to Miles Hensen on 93.7 Express FM’s Business Programme at 7pm on Thursday 29th June 2017.
Many thanks to Reputation Advocate Lorna Jackson of Advance & Get Noticed for arranging this.
Global ransomware attack causes chaos – http://www.bbc.co.uk/news/technology-40416611