The rules are changing on data protection, if you want to find out more, Rob will be talking to Miles Hensen on 93.7 Express FM’s Business Programme at 7 pm Tonight.
The rules are changing on data protection, if you want to find out more, Rob from Crimson Crab will be talking to Miles Hensen on 93.7 Express FM’s Business Programme at 7pm on Thursday 29th June 2017.
Many thanks to Reputation Advocate Lorna Jackson of Advance & Get Noticed for arranging this.
It is important to remember that we are only talking about third party personal data under the data protection rules.
If you are holding this as part of your responsibilities then you will need to comply with the Data Protection Act until May 2018 and the GDPR thereafter.
You need to think carefully about the storage and disposal of personal data.
The General Data Protection Regulations (GDPR) came into force in May 2016.
There is a two year lead in period to enable businesses to become familiar with the new regime and so the critical date is:
25th May 2018
The law applies to anyone who processes personal data (which includes storage and disposal) in whatever capacity.
Yes, it’s really important to get your house in order, ready for the new legislation.
You will need to get to grips with the new rights of individuals, handling subject access requests, consent, data breaches, and maybe even designating a data protection officer.
There is a responsibility to demonstrate compliance and so documenting what personal data you hold, where it came from and who you share it with is an absolute must.
The important thing is to make sure that someone in your organisation takes proper responsibility for data protection compliance in good time and has the knowledge, support and authority to do so effectively.
How can Crimson Crab help? Read more…
The General Data Protection Regulations (GDPR) will apply in the UK from 25th May 2018.
The government has confirmed that the UK’s decision to leave the EU will not affect their commencement.
They apply to ‘controllers’ and ‘processors’. The controller says how and why personal data is processed and the processor acts on the controller’s behalf. If you are currently subject to the Data Protection Act, it is likely that you will also be subject to the GDPR.
If you are a processor, the GDPR places specific legal obligations on you; for example, you are required to maintain records of personal data and processing activities. You will have significantly more legal liability if you are responsible for a breach. These obligations for processors are a new requirement under the GDPR.
However, if you are a controller, you are not relieved of your obligations where a processor is involved – the GDPR places further obligations on you to ensure your contracts with processors comply with the GDPR.