The General Data Protection Regulation (GDPR) is all over the news. Whilst the deadline of the 25th of May 2018 for UK businesses to be compliant might seem like a long way away, many businesses will have to make substantial changes before then to avoid hefty penalties. It is hard to overstate the differences between the already complex and important Data Protection Act (DPA) and the GDPR and the impact it will have on businesses and consumers.
Who does it apply to?
The GDPR will have an impact on every business and consumer with any EU presence. It “upgrades” the protections enshrined in law by the DPA for today’s digital world, thereby offering more protection to consumers and placing more responsibilities on businesses.
What about Brexit?
The Government has, with unusual (!) clarity, stated that the changes in the GDPR will continue to apply after Brexit.