Presentation is loading. Please wait.

Presentation is loading. Please wait.

From DPA to GDPR: the key elements

Published byShon Oswin Owen Modified over 6 years ago

Similar presentations

Presentation on theme: "From DPA to GDPR: the key elements"— Presentation transcript:

1 From DPA to GDPR: the key elements
April 2018

2 This presentation is intended to help you understand aspects of the Data Protection Act 1998, the General Data Protection Regulation and related legislation. It is not intended to provide detailed advice on specific points, and is not necessarily a full statement of the law.

3 What Data Protection is about: 1
Protecting data Protecting people Clients Service users Beneficiaries Employees Volunteers Trustees Donors Members Customers Supporters Professional contacts Keeping information in the right hands (and knowing what the ‘right hands’ are) Holding good quality data 4

4 What Data Protection is about: 2
Give us more money! Support our campaign! But of course we shared your data Privacy, transparency & choice

5 What Data Protection is about: 3
Recognise individual rights, such as: Right of Subject Access Right to opt out of direct marketing Right to compensation for harm

6 The legislation Data Protection Act 1998
replaced on 25th May 2018 by General Data Protection Regulation (EU) 2016/679 supported by Data Protection [Act] 2018 meanwhile Privacy & Electronic Communications Regulations is under review and will (eventually) become new ePrivacy Regulation

7 Elements of GDPR Compliance Legal basis Principles Data Controller
Processing Personal data

8 Breach notification Must notify serious breaches to ICO within 72 hours Must inform affected people if there might be serious consequences for them While anyone can make a mistake, failing to report a breach (or potential breach, or near miss) immediately is the worst thing you can do. Otherwise your organisation may not find out about a breach quickly enough to meet the 72hour deadline

9 Data Subject rights Direct Marketing refusal
Subject Access (no fee & one month limit) Rectification (correction and completion) Erasure (“right to be forgotten”) in some situations Restriction of processing in some situations Portability Objection to profiling & automated decision-making Complaints and compensation

10 Keeping records Must be able to demonstrate how you are complying
Basic information you must hold: The purposes of your processing The types of Data Subject and Personal Data you use Recipients you will disclose the data to Any overseas transfers Retention periods, where possible A general description of your security measures, where possible

11 Data Protection by design & by default
Everyone responsible for starting projects or setting up systems must be aware of the need to incorporate Data Protection as a matter of course. Make Data Protection a standard check point before any project or system is signed off

12 Thank you Any questions:

Download ppt "From DPA to GDPR: the key elements"

Similar presentations

Data Protection webinar: Data Protection & Volunteers 19 th June 2014 Welcome. We’re just making the last few preparations for the webinar to start at.

Data Protection webinar: Data Protection & Volunteers 19 th June 2014 Welcome. We’re just making the last few preparations for the webinar to start at.
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.

Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Presentation Title Data Protection The new EU Regulation Insert your logo here.

Presentation Title Data Protection The new EU Regulation Insert your logo here.
The EU General Data Protection Regulation Frank Rankin.

The EU General Data Protection Regulation Frank Rankin.
Your Code of Conduct: Data Protection & Compliance Your Code of Conduct: Data Protection & Compliance for Charities.

Your Code of Conduct: Data Protection & Compliance Your Code of Conduct: Data Protection & Compliance for Charities.
General Data Protection Regulation (EU 2016/679)

General Data Protection Regulation (EU 2016/679)
Profile & Privacy Management Dashboard

Profile & Privacy Management Dashboard
GDPR 12 POINTS 679/2016 DATA LEX 2016.

GDPR 12 POINTS 679/2016 DATA LEX 2016.
Tony Sheppard Mobile Guardian

Tony Sheppard Mobile Guardian
General Data Protection Regulation (GDPR)

General Data Protection Regulation (GDPR)
Key changes with the GDPR

Key changes with the GDPR
Accountability & Structured Privacy Management

Accountability & Structured Privacy Management
The future of data protection: General Data Protection Regulation

The future of data protection: General Data Protection Regulation
Understanding EU GDPR from an Office 365 perspective

Understanding EU GDPR from an Office 365 perspective
Presentation to GTMC on GDPR

Presentation to GTMC on GDPR
GDPR – What’s it all about???

GDPR – What’s it all about???
General Data Protection Regulations: what you really need to know

General Data Protection Regulations: what you really need to know
General Data Protection Regulation (GDPR

General Data Protection Regulation (GDPR
General Data Protection Regulations Preparing for the upcoming changes in data protection law David Jones & Angharad Williams.

General Data Protection Regulations Preparing for the upcoming changes in data protection law David Jones & Angharad Williams.
GDPR Overview Gydeline – October 2017

GDPR Overview Gydeline – October 2017

Similar presentations

Ads by Google