GDPR is a new legal framework that builds upon the existing Data Protection Act and comes into force on May 25th 2018. GDPR is about creating a higher global standard for data protection, privacy and security. GDPR is complex: it contains 173 [...]

Organisations have until 25th May 2018 to comply with the General Data Protection Regulation (GDPR). GDPR is driving businesses to adopt appropriate policies, procedures and processes to protect the personal data they hold and security of processing is integral to [...]

Rather like exam revision or tax returns, GDPR can inspire an uncomfortable mixture of boredom and fear. On one hand, it’s an abbreviation that relates to European rules about data management, so how interesting can it be, right? On the other [...]

One of the key changes driven by GDPR is that individual data subjects have more rights: Article 15: Right of access by the data subject Article 16: Right to rectification Article 17: Right to erasure (‘right to be forgotten’) Article [...]

Under article 25 of GDPR there are obligations to ensure personal data is adequately protected. Under article 28, as the controller*, you have the obligation to ensure that data processors** (for example subcontractors who may be processing personal data on [...]

Under Article 6 of the European Union's GDPR there is an obligation to ensure that you have lawful grounds to process personal data.The regulations define six legal grounds for processing personal data:1. Consent given freely and unambiguously by the data [...]

GDPR is a new legal framework that comes into force on May 25th 2018. It builds upon the existing Data Protection Act and it imposes more obligations on organisations to protect personal data and higher fines for non-compliance - 4% [...]

Related content: GDPR - the bare essentials | Workbooks Free GDPR webinars signup Like many organisations across the UK and Europe, we are getting ourselves ready for the arrival of the new GDPR legalisation in May 2018, so we thought it [...]