The increased rates of technological development and globalisation have brought new challenges for the protection of personal data. GDPR has been introduced to reflect changes in technology since the Data Protection Act was introduced.
Coming into effect on 25th May, GDPR is a compulsory requirement for any business handling personal data which relates to living EU citizens. The Information Commissioner’s Office (ICO) has issued a raft of guidance that firms can draw from to base their preparations on and further guidance following the consent consultation can be expected shortly. In a nutshell, organisations need to keep records of personal data that they hold/process, keep records of how and when consent was given and what the individual was told, show where the data is going and what it’s being used for, and protect the data they hold.
Designed for brokers, this guide focuses on the scope of GDPR, its key principles and the steps businesses should be taking now ahead of the implementation date.