As you’ve probably noticed from all the press stories, advice seminars and social media discussion, there’s just a month left until the new GDPR legislation comes into force on 25th May.
This will give the data’s owner (usually the person that it’s about) more rights and impose greater fines and penalties on businesses that misuse personal information. It also increases the regulation of data security and data processing.
This will be you – the organisation that has collected the data subject’s information.
The principle of ‘fair processing’ under GDPR means that individuals must have control of their personal data. Individuals must be able to request the deletion of their data and it must be clear how they can do that.
You’ll need to be clear and specific about what data you’re collecting and why you’re collecting it. This will most likely be an individual’s name, address and email.
Government agencies may have a right to request certain data and if you share it with others then you need to specify this.
There are a few other requirements in the new legislation too and you can find a full list of new detailed requirements in Legalo’s helpful blog article here.
We’re also excited to have partnered with Legalo to be able to offer FREE access for MMD clients to some of their most popular web compliance templates:
If you’re an MMD customer and would like to claim these, just get in touch!