Major Data Protection Changes

The new EU regulation on data protection is coming into force in May 2018 and everyone will need to adhere to it. The UK will still be part of the EU at this time and will have to comply with this regulation. The exact implications of this for research are being determined by the MRS in consultation with the ICO.  The Fair Data website has guidance on what you can do now to prepare for the EU GDPR

The changes mean greater accountability on all businesses handling data (whether as a controller or a processor) – a wider scope, stronger individual rights, higher fines and sanctions, extensive new compliance and audit demands from clients.

Compliance Timeline

Phase 1: Raise awareness and gather information (Aug – Dec 2016)

Phase 2: Plan & Prioritise (Jan – May 2017)

Phase 3: Implement changes (June – Dec 2017)

Phase 4: Embed change, train and re-train (Jan – May 2018)