Recommended Agency

text controls: text only | A A A

Sorry, our twitter status is currently unavailable, posted 38 minutes ago

RSS feed icon What is RSS?


GDPR - what does it all mean?

The Data Protection act is changing. From the 25th of May 2018 the EU is giving people more control over who holds their information and what they can use it for. This change is due to the General Data Protection Regulation (GDPR) which, in the UK, will be managed by the Information Commissioner's Office (ICO).

After the GDPR is in place websites will no longer be able to hold someone's details without their consent and will have to delete these details if asked. This is to give the public more control over their personal information as well as a say in the quality and quantity of the information they receive and who is able to contact them personally.

This new regulation also hopes to improve privacy, eliminate data profiling and protect children - parents/carers would need to give permission to process data of anyone under 16 years of age.

Unlike previous versions of the Data Protection Act (DPA) the GDPR will be strongly reinforced in order to promote accountability and governance.  Businesses will have to adhere to a 72 hours deadline for reporting data breaches as well as paying hefty fines if found to be in violation of the GDPR - fines of up to 4% of Global Annual Revenue or €20 million, whichever is greater.  Businesses that hold a large amount of data will have to appoint a Data Protection Officer (DPO) although it will be considered best practice for all businesses to appoint one.


As the United Kingdom will still be part of the EU when the GDPR takes effect in May 2018, UK businesses will also need to be ready. As any business worldwide who does business within the EU will have to follow these regulations, it's likely that the UK will pass a similar regulation post Brexit to encourage continued trade with the EU.

Put Simply

You'll be able to have your data stored by who you want, where you want, when you want. No company will be able to stop you from asking them to 'forget' your name, phone number, email address, physical address or any sensitive information about you. If you want to move service such as bank account or doctor, it will be made easy for you, the format of the information will be universal and the switch must happen within one month.

Click here to see what the GDPR means for Businesses

Click here to find out what the GDPR means for Individuals

If you would like to talk about changes you can make to your company website in relation to GDPR, call us on 0117 9498008 or email

For more details on the GDPR, see the ICO website.

Frances Smolinski

Created on Tuesday May 01 2018 03:43 PM

Tags: gdpr

Comments [0]


Add a comment