Data Protection: Compliance with new regulations required by spring 2018

Published: 20 Dec 2017

New data protection regulations will be introduced in spring 2018 with implications for UK data controllers and processors.

The European Union has committed to update and strengthen the regulations governing data protection across all member states. The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) will come into effect on 25 May 2018 replacing the existing Data Protection Act (DPA) which has been in place since 1998.

All organisations that process data should actively consider the Regulation and Bill and associated guidance documents including those produced by the Article 29 Working Party, Information Commissioner’s Office and IG Alliance. Compliance must be in place by 25 May 2018.

The Government has confirmed that the UK’s decision to leave the EU will not affect the commencement of the GDPR and they have introduced the General Data Protection Bill to Parliament with the aim of updating UK data protection laws.

We would highly recommend taking a moment to read the following websites which contain important information and advice on how to achieve compliance

• Article 29 Working Party
• Information Commissioner’s Office (ICO)
• IG Alliance