Much has changed since 1998. We now give a lot of information about ourselves to a lot of organisations, usually willingly but frequently unknowingly. Quite often we don’t know what happens to this information, how it is used and how decisions about us are made. The General Data Protection Regulation 2018 (GDPR) makes organisations more accountable in the way that they collect, use, store and dispose of personal information and gives individuals more control over information about them that they pass onto others.
Most of what you do stays the same, but some aspects need you to do more - for example:
Audit your data to identify what you hold and why
Nominate or appoint a data protection officer if you're an NHS provider
Provide privacy notices to comply with the new law.
Our advice explains how you can comply - and the Expert templates help you to implement the changes. Don't be frightened into paying for expensive services you might not need.