New legislation to replace the Data Protection Act

Next year will see the introduction of new legislation relating to data protection. The General Data Protection Regulation (GDPR) will come into force in May 2018 and will replace the Data Protection Act 1998.The new legislation seeks to strengthen the rights of all EU citizens in an increasingly digital environment and to facilitate business by simplifying rules for companies.

Despite Brexit, the UK will still have to comply with the legislation. For the most part, GDPR requirements will be the same as under current data protection legislation. However, there is a new focus on accountability and the ability to prove that personal data is being protected throughout its lifecycle. Failure to comply with the new requirements will result in significant penalties, far greater than those currently incurred under the Data Protection Act.

Work is underway at the University to prepare for the new legislation. In the meantime, please complete the data protection online training module, if you have not done so already. This is mandatory for all members of staff. You can also find out more about data breach here https://www.kent.ac.uk/infocompliance/dp/staff-info/data-breach.html

Image via blogtrepreneur.com/tech