The UK’s Data Protection Act was passed almost twenty years ago. Since then, the collection and use of data by organisations, both public and private has changed enormously. Mobile phones now dominate how we receive and assimilate data. Giant corporations like Google and Facebook keep track of your online activities, so they can sell the information to advertisers and governments are demanding ‘big brother’ powers to access citizens’ data to protect people from terrorist attacks.
The GDPR has updated the rules surrounding data protection, and at present, many organisations will find they are not compliant with the new rules. With the regulations coming into force in 2018, companies are being urged to get themselves up to date with the new law and plan to ensure they meet compliance.
The GDPR is an EU law. The government has directed that all business and charities must comply with the new regulations, meaning that after Brexit, they are likely to be transposed into British law.
Penalties for breaching the GDPR are harsh. Businesses can face fines of €20 million or 4% of their revenue, whichever is greater.
The main changes which will affect organisations collecting data are as follows:
The GDPR will impact all organisations, especially those who sell their products and/or services online. To find an experienced IT solicitor about how to prepare your business or charity for the new regulations, search Solicitors Guru today.