GDPR - the basics
In May next 2018, the Data Protection Act (DPA) will be replaced by the EU’s General Data Protection Regulation (GDPR). This framework will have greater scope and much tougher punishments for those who fail to comply with new rules around the storage and handling of personal data.
While this new framework comes into place as the UK enters the process of uncoupling from the EU, the Great Repeal Act means it it is likely to be converted into British law.
The GDPR Regulation extends the data rights of individuals, and requires organisations to develop clear policies and procedures to protect personal data, and adopt appropriate technical and organisational measures. font-family:
How will Brexit impact GDPR?
UK organisations handling personal data will still need to comply with the GDPR, regardless of Brexit. The GDPR will come into force before the UK leaves the European Union, and the government has confirmed that the Regulation will apply, a position that has been confirmed by the Information Commissioner.