If you have any other questions about GDPR, get in touch with us, and if we think it’s appropriate we might add it to our list of GDPR FAQs.
What is GDPR?
The General Data Protection Regulation (GDPR) is a new data protection law being introduced by the EU.
When did GDPR come into place?
25th May, 2018.
Who does GDPR benefit?
You. The individual who shares their data with a company or organisation (the data subject) has more control over their data.
Who does GDPR affect?
GDPR aims to protect and give more control of EU citizens’ personal data to the individual. This means that any organisation that holds personal data on an EU citizen will be affected and have to comply with the laws.
What is personal data?
Anything that can potentially identify an individual. Anything from name and address to religion and political ideologies can be considered personal data. Even things like photographs are personal data.
What rights does an individual (data subject) have?
The data subject has the right to be forgotten/to erasure (to have their data deleted), the right to rectification (to have their data altered), the right to restrict processing (to have an organisation stop using their data), the right of access (to be able to view their data), and the right of portability (to have here data transferred from one place or organisation to another).
How does Brexit affect GDPR?
UK organisations will still have to comply with the regulations should they hold any data on EU citizens. GDPR is also influencing the UK government’s policies on data protection – the UK has proposed to adopt even stricter regulations.
What is the largest fine a company can be charged for a data breach?
4% of annual turnover or 20 million Euros, whichever is higher, per breach.