New guidance: New guidance to help company boards support their business preparing for GDPR changes
The Institute of Chartered Secretaries and Administrators: Governance Institute (ICSA) has published guidance to help company boards support those in their organisation responsible for dealing with data, as the new General Data Protection regulations (GDPR) loom.
The GDPR is an EU Regulation that strengthens and unifies data protection for individuals within the EU and regulates the export of personal data outside the EU. Its aim is to give citizens control over their personal data and simplify the regulatory environment for international business. It will replace the UK's current data protection laws. As it is an EU Regulation the GDPR has direct effect – there is no need for enabling UK law. The proposed introduction date is 25 May 2018.
The guidance, Guidance Note: EU General Data Protection Regulation, contains an overview of the new rules, and highlights the strategic and practical considerations raised. Its aim is to help the board support functions such as legal, HR, IT, customer services, marketing and others dealing with customer, employee, supplier and other personal data in complying with the GDPR. It breaks the legislation down into three key areas:
Dealing with individuals
Governance and risk management
The guidance can be used to form a checklist for those at the coal face of implementation.
The guidance is free, but you must register with ICSA to download it.
Visit the ICSA website and register to download a free copy of the guidance
Authorised and Regulated by The Solicitors Regulation Authority. Authority number 591294.
For details of the professional rules governing the conduct of solicitors go to www.sra.org.uk/code-of-conduct.page