With less than six months to go until the General Data Protection Regulation (GDPR) comes into force in May 2018, organisations need to take steps now to prepare. To help with this, the UK Information Commissioner’s Office (ICO) has recently released a Guide to the GDPR aimed at those with day to day responsibility for data protection. The guide replaces the ICO’s previously published Overview of the GDPR and includes similar content but with expanded sections on consent and contracts and liabilities. It also contains ‘What’s new’ sections and useful checklists.
As well as links to relevant sections of the GDPR itself, the guide includes links to other ICO guidance on the GDPR. In particular, its popular GDPR: 12 steps to take now infographic and its Getting ready for the GDPR checklists. The new publication also contains links to guidance produced by the EU Article 29 Working Party, which has representatives from each EU member state (including a link to the Article 29 Working Party Guidelines on imposing administrative fines, published in November).