On 25 May 2018, the new General Data Protection Regulation (GDPR) will come into force. Although this is European legislation, the Government has confirmed that GDPR will be implemented in the UK regardless of the fact that it is likely to be leaving the EU shortly after. GDPR is viewed as a good piece of legislation that will provide consistent data protection rights across Europe.
Although the principles of GDPR are consistent with those of the current Data Protection legislation, the new law will enhance the rights of individuals and will place greater emphasis on organisations to safeguard personal data –with stronger penalties for non-compliance. With that in mind EMWPREP are making some changes to the way in which we collect, process and analyse data.
The following new documents will help guide our practices and procedures, and provide more detailed examples of how we process collected data:
- Data Compliance Agreement
- How we use your Data- Privacy Notice
- Data Retention and Deletion Policy
- Data Sharing Policy
- Data Collection Forms