The General Data Protection Regulation, or GDPR, is the new data protection legislation replacing the Data Protection Act 1998.
It’s a European Union regulation which aims to give people more control over how their personal data is collected, used, stored and shared. It’s designed to strengthen and unify the data security measures of businesses in the European Union.
B&CE, provider of The People’s Pension, already makes sure that data protection is central to our business. Under GDPR, we’re more transparent about how we collect, use, share and store our customers’ (and employees’) data.
GDPR comes into force (after a two-year transition period) on 25 May 2018.
If you’re a business and you need help preparing for GDPR, see The Information Commissioner’s website.
Or if you’re a member, there’s some handy information from the European Union