GDPR & Cyber Security
In recent years, data protection law has undergone significant change with the introduction of the EU General Data Protection Regulation (GDPR) and the Data Protection Act (DPA) 2018 in the UK. In today's climate, individuals have enhanced rights to control their personal data and those who are handling personal data have extensive obligations to ensure those rights are respected and protected.
Despite Brexit, the GDPR is retained in UK domestic law through the DPA, meaning the UK's data protection rules substantively remain the same as those of the EU. This is unlikely to change for the foreseeable future and businesses must be proactive in their assessment of their business to ensure they are fully compliant.
Failure to comply with the rules can lead to reputational damage, the loss of contract opportunities and the potential for significant fines; depending on the nature of the failure to comply with the rules, fines issued can be up to £17.5 million or 4% of annual global turnover – whichever is greater.
MacRoberts' Data Protection and Cyber Security lawyers have extensive experience of assisting clients with a range of data protection matters, so please do not hesitate to contact us to discuss your business's requirements.