New guidance: New guidance to help company boards support their business preparing for GDPR changes

The Institute of Chartered Secretaries and Administrators: Governance Institute (ICSA) has published guidance to help company boards support those in their organisation responsible for dealing with data, as the new General Data Protection regulations (GDPR) loom.

The GDPR is an EU Regulation that strengthens and unifies data protection for individuals within the EU and regulates the export of personal data outside the EU. Its aim is to give citizens control over their personal data and simplify the regulatory environment for international business. It will replace the UK's current data protection laws. As it is an EU Regulation the GDPR has direct effect – there is no need for enabling UK law. The proposed introduction date is 25 May 2018.

The guidance, Guidance Note: EU General Data Protection Regulation, contains an overview of the new rules, and highlights the strategic and practical considerations raised. Its aim is to help the board support functions such as legal, HR, IT, customer services, marketing and others dealing with customer, employee, supplier and other personal data in complying with the GDPR. It breaks the legislation down into three key areas:

  • Data basics
  • Dealing with individuals
  • Governance and risk management

The guidance can be used to form a checklist for those at the coal face of implementation.

The guidance is free, but you must register with ICSA to download it.

Operative date

  • Now


  • Visit the ICSA website and register to download a free copy of the guidance

© Atom Content Marketing 2017

  • The help and assistance I received from all members of Marsden Rawthorns staff was excellent