What is it?
The General Data Protection Regulation (GDPR) came into effect on 25th May 2018 and applies to most UK businesses and organisations. It outlines seven key principles surrounding data management, the obligations of companies processing personal data, and the rights of an individual concerning their information.
Why does it matter?
If your company collects personal information about your customers, you could be heavily penalised for failing to comply with GDPR guidelines, with fines up to 4% of your annual revenue.
As an individual, GDPR guarantees you the right to determine how your data is used.
The EU Withdrawal Act retains the GDPR in UK law after we leave the EU. This legislation allows the UK government to make some changes, but the core components will remain intact.