The aftereffects of Brexit on the GDPR
The UK’s decision to leave the European Union leaves the issue of data protection in some uncertainty given that the General Data Protection Regulation (GDPR) is expected to come into force in May 2018.
In efforts to dispel this uncertainty, it has been clarified that the GDPR will be effective from the 25th May 2018, until the confirmed Brexit date. The GDPR will supersede the current Data Protection Act from 1998 with the aim of providing more contemporary laws for the digital world and improve and strengthen data protection for EU citizens as well as increase business opportunities.
To recap some key requirements of the GDPR are:
A higher threshold for consent. Consent must now be freely given, specific, informed and unambiguous shown by a statement or a clear affirmative action
The mandatory appointment for a Data Protection Officer. This requires the appointment of someone with “expert knowledge” of data protection law to oversee and ensure compliance
Tougher sanctions and fines. For non-compliance; up to 20 million Euros or 4% of annual worldwide turnover.
Obligatory Privacy Impact Assessments. These will show an organization has considered the risks associated with personal data practices.
Data breach notification requirements. Breaches must be notified to the Supervisory Authority within 72 hours. Click here for more details..
Contact Details:
Nath Solicitors Limited
4/4a Bloomsbury Square
London, WC1A 2RP
Tel: 02036705540
Email: shubha@nathsolicitors.co.uk
Web: https://www.nathsolicitors.co.uk/
The UK’s decision to leave the European Union leaves the issue of data protection in some uncertainty given that the General Data Protection Regulation (GDPR) is expected to come into force in May 2018.
In efforts to dispel this uncertainty, it has been clarified that the GDPR will be effective from the 25th May 2018, until the confirmed Brexit date. The GDPR will supersede the current Data Protection Act from 1998 with the aim of providing more contemporary laws for the digital world and improve and strengthen data protection for EU citizens as well as increase business opportunities.
To recap some key requirements of the GDPR are:
A higher threshold for consent. Consent must now be freely given, specific, informed and unambiguous shown by a statement or a clear affirmative action
The mandatory appointment for a Data Protection Officer. This requires the appointment of someone with “expert knowledge” of data protection law to oversee and ensure compliance
Tougher sanctions and fines. For non-compliance; up to 20 million Euros or 4% of annual worldwide turnover.
Obligatory Privacy Impact Assessments. These will show an organization has considered the risks associated with personal data practices.
Data breach notification requirements. Breaches must be notified to the Supervisory Authority within 72 hours. Click here for more details..
Contact Details:
Nath Solicitors Limited
4/4a Bloomsbury Square
London, WC1A 2RP
Tel: 02036705540
Email: shubha@nathsolicitors.co.uk
Web: https://www.nathsolicitors.co.uk/
No comments:
Post a Comment