Experts say businesses still have a way to go before they reach compliance
GDPR at a glance
The General Data Protection Regulation (GDPR) came into force across the EU on 25 May 2018, forcing an update to the UK’s existing Data Protection Act 1998 (now DPA 2018). Designed to give people more control over their data, GDPR represents a challenge to organisations, who must bring their data protection policies into line with the new regulations or face substantial penalties.
GDPR compels organisations to secure clearer consent for using people’s information, and introduces tougher fines for failing to protect people’s data.