There is a great deal of debate, and a certain amount of anxiety, among businesses surrounding GDPR. As qualified accountants we are regularly asked by our customers to help them deal with the implications of GDPR and provide advice. At Llewellyns we are here to support our customers through changes such as this.
The most important thing to understand is that if you’re operating with full compliance of the current data protection legislation, then you are unlikely to need to change your existing basis for processing. The GDPR has largely been designed to plug a lot of gaps in DPA that weren’t originally foreseen, particularly with the growth in personal data and the internet. The scope has been widened as to what is considered personal data, so while this may mean some businesses are now included that previously weren’t, the general approach required to comply is largely the same.
In this page we have listed some of the key differences as well as provided some of the expanded definitions under the new rules. However, this isn’t a fully comprehensive guide. The current resource which we feel best documents the GDPR, is the ICO’s guidance available here… https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/