GDPR Coming Into Effect on 25th May 2018

The General Data Protection Regulation, more commonly known as GDPR will come into effect on 25th May 2018.  It is the biggest change to personal data privacy in over 25 years.

One of the changes is higher standards for consent. Essentially, meaning that an organisation holding clients’ information, for example, names, addresses, and personal sensitive information such as a client’s ethnic origin or physical or mental health details must have consent from the client about what information they can hold and what they can use it for. Asking for clients’ consent needs to be clear, concise and unambiguous.

The Information Commissioner’s Office (ICO) has a guide 12 Steps to Take Now in preparation for the GDPR and a Getting Ready for the GDPR Checklist for data controllers and data processors. In addition, last year, the ICO delivered a session on the GDPR specifically tailored to the Independent Advice Network– the slides can be viewed below.

If you are a member of Advice NI and require further information on what this means for your Advice Service please contact us.  Details of the ICO’s Northern Ireland office can be found here.