UK Data Protection Bill - bringing EU’s GDPR into law

by User Not Found | Aug 09, 2017
UK Data Protection Bill “will bring the European Union’s General Data Protection Regulation (GDPR) into UK law”

Are you ready for GDPR? Almost half (48 percent) of businesses say they aren’t ready, according to a survey by Experian – and many businesses yet to start preparations give confusion over Brexit as the reason, and whether compliance with the EU’s General Data Protection Regulation will be necessary – despite the UK leaving the EU a year after GDPR comes into effect on 25 May 2018.


This confusion has now been removed, following the UK government releasing details of the UK Data Protection Bill (Monday 7 August 2017), and which “will bring the European Union’s General Data Protection Regulation (GDPR) into UK law,” (Department for Digital, Culture, Media & Sport).


The Bill will give individuals greater control over their personal data, with businesses facing heaftier fines for non-compliance. The ICO – the Information Commissioner’s Office – and the UK’s data protection regulator will be able to impose fines of up to £17 million or 4 per cent of global turnover, for the most serious data breaches.


Matt Hancock, Minister of State for Digital said, “Our measures are designed to support businesses in their use of data, and give consumers the confidence that their data is protected and those who misuse it will be held to account.”


The Bill will:

-. Widen the definition of ‘personal data’, to include IP addresses, internet cookies and DNA

- Make it simpler for individuals to refuse consent for the use of personal data

- Enable individuals to request the erasure of personal data

- Enable parents and guardians to give consent for a child’s data to be used

- Make ‘explicit’ consent compulsory for sensitive personal data processing

- Make it easier for individuals to move data between service providers, and easier and free to obtain personal data held across an organisation.


Matt Hancock, Minister of State for Digital said, “The new Data Protection Bill will give us one of the most robust, yet dynamic, set of data laws in the world. The Bill will give people more control over their data, require more consent for its use, and prepare Britain for Brexit.”


Cobweb has put together a package to support customers as they prepare for GDPR, incorporating collateral and advice forums.


“We’ve created a three-stage approach to help businesses steer through what can seem a daunting challenge,” says Michael Frisby, Cobweb MD. “The first phase is to define requirements, then to create a detailed plan of what’s needed to meet those requirements, and finally to look to the technology – solutions and services – available to help deliver those changes.


“Each phase is backed up by a series of activities – workshops, corporate assessments and clinics hosted by an independent GDPR implementation consultant, with the Cobweb team on-hand to advise on the technology requirements.


“Many of you attended the GDPR webinar back in June, and workshops in July –  and following the excellent feedback we’ll be holding a further workshop in September.”


Full details of this workshop, and the GDPR compliance journey package will be available shortly, and we’re also hosting a GDPR-focused event in Paddington, London on Thursday 2 November. Again, we’ll be posting a full agenda shortly.


If you’ve any questions about GDPR or about how the Cobweb team can help – call on 0333 920 6841 or email hello@cobweb.com

GDPR COUNTDOWN

25 May 2018

How to start preparing for GDPR


 

GDPR Journey

1. Location

Creation of an inventory of personal data

GDPR requires organisations to be able to identify every reference to any individual across all systems


2. Governance

Managing personal data access and use

Establish a clear view of existing and define new data processing activities required


3. Security

Protecting personal data against vulnerabilities and breach

Business will need to be able to prevent, detect and respond


4. Reporting

For data requests, breaches and accountability

GDPR requires a higher standard of transparency, accountability and documentation than the majority of companies will have encountered before

10 things to consider with GDPR

GDPR Journey

How Cobweb can support your GDPR journey

 

See how prepared your business is:
Take our easy 15-step survey


Discover where to begin:
Attend a GDPR readiness workshop


Receive bespoke GDPR advice:
Take part in a GDPR assessment


Delve into GDPR compliance:
Bring your business to the GDPR clinic

GDPR eBOOK

GDPR - A Guide to Business

GDPR Guide


GDPR resources icon

Other Useful Resources

 

GDPR with Microsoft
Accelerate GDPR compliance 


Symantec GDPR Guide
A new dawn of data privacy


Mimecast
GDPR risk management


TermSet
GDPR compliance for SharePoint Content

Solutions that help your business to meet GDPR compliance


Microsoft


Microsoft
Office 365

 

Office 365 helps to identify or manage access to personal data and safeguard your data in the cloud. Features such as Customer Lockbox, Data Loss Prevention help you meet GDPR compliance.



EM+S

 

Microsoft Enterprise Mobility + Security

Use multiple devices, apps and environments with Microsoft EM+S, which secures access to your business' data to prevent misuse and data breaches.





Microsoft

 

Microsoft Azure Active Directory

 

Azure AD incorporates comprehensive identity management capabilities and ensures that only authorised users can access your environments and data.





Dynamicst

 

Microsoft
Dynamics 365

 

Dynamics 365 is the next generation of intelligent business applications and it enables you to control and manage your data and achieve GDPR compliance.





Microsoft

 

TermSet
Metadata Automation

TermSet automates GDPR information discovery in SharePoint and highlights documents that contain sensitive GDPR information. 



Microsoft

 

Symantec
EndPoint Protection 

Symantec Endpoint Protection provides industry-leading security as a service that protects your organisation across any device.







logo-mimecast


Mimecast
Email Archiving

 

Mimecast’s email security is the most comprehensive cloud-based email security and compliance solution on the market today.


Microsoft

 

Acronis
BackUp Cloud

 

A powerful backup service, enabling organisations to backup data to a secure Cloud environment.