skip to Main Content
01254 694015 info@mwinstitute.co.uk

What is GDPR?

The Gen­er­al Data Pro­tec­tion Reg­u­la­tion (GDPR) (EU) 2016/679 is a reg­u­la­tion in EU law on data pro­tec­tion and pri­va­cy for all indi­vid­u­als with­in the Euro­pean Union. Since Britain is (still) part of EU, GDPR applies to and is rel­e­vant to all British cit­i­zens.

GDPR is stricter to the cur­rent­ly enofre­ca­ble reg­u­la­tions as set out in Data Pro­tec­tion Act 1998.

What is “Personal Data”?

The GDPR applies to ‘per­son­al data’ mean­ing any infor­ma­tion relat­ing to an iden­ti­fi­able per­son who can be direct­ly or indi­rect­ly iden­ti­fied in par­tic­u­lar by ref­er­ence to an iden­ti­fi­er.

This def­i­n­i­tion pro­vides for a wide range of per­son­al iden­ti­fiers to con­sti­tute per­son­al data, includ­ing name, iden­ti­fi­ca­tion num­ber, loca­tion data or online iden­ti­fi­er, reflect­ing changes in tech­nol­o­gy and the way organ­i­sa­tions col­lect infor­ma­tion about peo­ple.

The GDPR applies to both auto­mat­ed per­son­al data and to man­u­al fil­ing sys­tems where per­son­al data are acces­si­ble accord­ing to spe­cif­ic cri­te­ria. This could include chrono­log­i­cal­ly ordered sets of man­u­al records con­tain­ing per­son­al data.

Per­son­al data that has been pseu­do­nymised – eg key-cod­ed – can fall with­in the scope of the GDPR depend­ing on how dif­fi­cult it is to attribute the pseu­do­nym to a par­tic­u­lar indi­vid­ual.

PLEASE LET US KNOW IF YOU WOULD LIKE YOUR INFORMATION UPDATED OR REMOVED BY EMAILING US at INFO@MWINSTITUTE.CO.UK