The GDPR is the “General Data Protection Regulation” which replaces the rules laid down by the Data Protection Act 1998 (“The DPA”). The DPA already puts the onus on business to protect personal data. The DPA however pre-dated the internet and modern information technology systems. The GDPR is an attempt to update the law.
Personal data has been defined in the new GDPR as any information relating to an individual or identifiable natural person who can be identified, directly or indirectly. Particularly by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
- Rapid technological developments and globalisation have brought new challenges for the protection of personal data.
- Scale of the collection and sharing of personal data has increased significantly.
- Technology allows both private companies and public authorities to make use of personal data at unprecedented scale in order to achieve their objectives.
- Natural persons unwittingly and increasingly make personal information available publicly and globally (whether they realise it or not!).
- Technology has transformed both the economy and social life…
- …and should further facilitate the free flow of personal data within the Union and the transfer to third countries and international organisations, while ensuring a high level of the protection of personal data.
Comhaltas have created some resources to assist branches with GDPR. There is also a webinar to view with accompanying notes.
Download the presentation here to use alongside the webinar above.
