In light of the much anticipated ICO draft GDPR (the General Data Protection Regulation) Consent Guidance being published yesterday, 2 March 2017, we will be running a mini-series on the guidelines under consultation and the impact the GDPR will have on the much vexed position of consent and the impact on your business.
A fundamental aspect of all fair and lawful processing of personal data under the current data protection rules is the requirement for the party who is the data controller to meet one or more conditions (“the conditions for processing”).
In one of our recent GDPR updates we reviewed the impact which the GDPR would have on data processors. As explained in that update, data processors will see a significant shift in their responsibilities under data protection laws after the introduction of the GDPR.
As is the case for data processors, data controllers will also find themselves subject to more stringent rules under the new EU General Data Protection Regulation (GDPR), which is due to come into force in May 2018.
In the run-up to 25 May 2018, it’s a good idea for data processors to keep an ear firmly to the ground in terms of upcoming guidance from the Information Commissioner’s Office (ICO). New guidance is expected to be published before the end of this year.
Our brave new world of technology can make day-to-day work so much easier (most of the time), but it comes with a set of trip-wires just waiting for the unassuming charity. As featured in Third Force News, Val Surgenor discusses some of the golden rules charities should follow to stay on the right side of the law.