In the first of a series of articles, Rollits LLP provides an essential overview of the General Data Protection Regulation
- The changes introduced by the GDPR create a number of challenges for organisations that process personal data.
- Organisations that have DPA compliant measures in place will be in a good position to handle those challenges.
On 25 May 2018, the UK’s current data protection legislation—the Data Protection Act 1998 (DPA 1988)—will be replaced by the General Data Protection Regulation (GDPR). The GDPR imposes significant additional obligations on the way organisations are able to lawfully obtain, hold and handle personal data. In this, the first of a four-part series on the GDPR, we consider why the current data protection legislation needed updating and provide an overview of some of the key changes being introduced.
The need for reform
It has long been recognised that an individual’s personal data is a valuable commodity which should be protected by any organisation that has access to or uses it. The first fundamental piece of legislation which focused on data protection in the UK
