“Companies today are using data in ways that were unimaginable when the current Data Protection Act was being drafted”
Elizabeth Denham, UK Information Commissioner
What is the GDPR?
The General Data Protection Regulation (GDPR) is an overhaul of the current Data Protection Act which came into effect on the 25th May 2018. The government has confirmed that the UK’s decision to leave the EU will not affect the GDPR.
The GDPR is a big shake up of current data protection laws and will cause significant disruption to how organisations store, manage and process personal data.
When the Data Protection Act was first drafted, there was no Google, no Facebook, no smartphones. Our ways and means of connecting with each other were extremely limited.
Today, advances in technology have over taken data protection laws to such a degree that the protection of consumers’ privacy rights have been massively compromised. Enter the GDPR.
What do I need to do?
Every business has different levels of complexity and will therefore need to follow different processes to be compliant under the GDPR. As well as conducting a Vendor Audit, here are three great resources to get you started.