Data Protection

Data protection has become a minefield of complex rules and regulations. Personal data is hedged around with all sorts of controls to ensure its safely from prying eyes. The new Regulation will add to the plethora of laws that effect every organisation, large and small, that handles personal data. The new rules will require many changes to business systems, policies and procedures and the entire approach of the organisation to personal data. Company secretaries and directors will be responsible to see that their companies comply with these new requirements.

This new book condenses a mass of EU and UK documentation into one practical and easy-to-read manual, guiding you through all the relevant changes simply and clearly. It provides comprehensive description of the legal and regulatory provisions, commentary on business requirements, examples and sample data protection and information policies.

This book analyses the regulatory obligations and business requirements of the new EU General Data Protection Regulation. This Regulation will replace the existing data protection regime. The book covers both the current regime and the changes to come. Contents include: requirements for consent to data processing; information for data subjects; marketing requirements; data security; outsourcing, including the cloud; data transfer outside the EU; data protection by design and by default; data protection impact assessment; rights of data subjects, including fines and penalties; and record-keeping.