Put privacy on the agenda before it becomes the agenda!
Chances are you’re aware of privacy and the law and have heard of the DPA 2018, UK GDPR1, EU GDPR2 and PECR3 and that you’re comfortable that you’re addressing the challenges or you’re not quite sure how it affects you and what you need to do
The EU GDPR is a data protection framework that applies to any EU-based company that processes personal data and any company based outside the EU if it offers goods or services to EU data subjects or monitors their behaviour
For UK-based companies the Data Protection Act 2018 imports the GDPR in its entirety, subject to certain derogations set out elsewhere in the Act
What we do
1 The UK GDPR is the retained EU law version of the General Data Protection Regulation ((EU) 2016/679) as it forms part of the law of England and Wales, Scotland and Northern Ireland (by virtue of section 3 of the European Union (Withdrawal) Act 2018 and as amended by Schedule 1 to the Data Protection, Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations 2019 (SI 2019/419)).
2 General Data Protection Regulation (EU) 2016/679.
3 Privacy and Electronic (EC Directive) Communications Regulations 2003 (SI 2003/2426) (as amended).