The EU General Data Protection Regulation (GDPR) will come into force across all members states (including the UK) on 25 May 2018. As the EU is the UK’s largest trading zone the UK will still be expected to adopt the GDPR, or something very like it, regardless of the eventual deal reached by UK Government as part of Brexit negotiations. So it is vital that UK businesses start to prepare for the changes that are coming.
The additional compliance requirements may be viewed as a burden, even costly and disruptive, however businesses regardless of size should also view GDPR as a great new opportunity to enhance their information security practice from technical, governance and legal perspectives.
To help prepare for GDPR here are 12 steps that the Information Commissioner’s Office advises that you take now: (more…)