The third in our mini-series on the ICO guidance on Consent, published on 2 March 2017, focuses on the alternatives to consent when data processing.
The second in our mini-series on the ICO guidance on Consent, published on 2 March 2017, focuses on how the changes to be introduced by the GDPR (General Data Protection Regulation) will impact upon your business and what you can do to pre-empt the changes before their introduction in May 2018.
In light of the much anticipated ICO draft GDPR (the General Data Protection Regulation) Consent Guidance being published yesterday, 2 March 2017, we will be running a mini-series on the guidelines under consultation and the impact the GDPR will have on the much vexed position of consent and the impact on your business.
A fundamental aspect of all fair and lawful processing of personal data under the current data protection rules is the requirement for the party who is the data controller to meet one or more conditions (“the conditions for processing”).
In one of our recent GDPR updates we reviewed the impact which the GDPR would have on data processors. As explained in that update, data processors will see a significant shift in their responsibilities under data protection laws after the introduction of the GDPR.
As is the case for data processors, data controllers will also find themselves subject to more stringent rules under the new EU General Data Protection Regulation (GDPR), which is due to come into force in May 2018.
In the run-up to 25 May 2018, it’s a good idea for data processors to keep an ear firmly to the ground in terms of upcoming guidance from the Information Commissioner’s Office (ICO). New guidance is expected to be published before the end of this year.