Who Is Affected by GDPR?
The General Data Protection Regulation (GDPR)and the UK Data Protection Act 2018 (DPA) came into effect across the European on 25th May 2018. The scope of the GDPR, together with the DPA, is far reaching and will impact all business (no matter how small) where they use Personal Data (e.g. employees, customers or clients).
The GDPR applies in every country in the EU but also applies to organization or businesses outside the EU who provide goods or services, or who target recipients with their goods or services, inside the EU. In most cases, even international companies (outside the EU) will hold or use Personal Data belonging to EU citizens or otherwise use that data inside the EU for a variety of purposes. Consequently, all companies will need to demonstrate that they have compliant data protection systems and controls in place and can meet the core principles of the GDPR and DPA. GDPR will continue to apply whether the UK leaves the EU or not.
If you are looking for a GDPR data protection consultancy in the UK and would like to learn more about your rights and responsibilities, please get in touch with us at DPP.