What is GDPR?
The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union. Since Britain is (still) part of EU, GDPR applies to and is relevant to all British citizens.
GDPR is stricter to the currently enofrecable regulations as set out in Data Protection Act 1998.
What is “Personal Data”?
The GDPR applies to ‘personal data’ meaning any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier.
This definition provides for a wide range of personal identifiers to constitute personal data, including name, identification number, location data or online identifier, reflecting changes in technology and the way organisations collect information about people.
The GDPR applies to both automated personal data and to manual filing systems where personal data are accessible according to specific criteria. This could include chronologically ordered sets of manual records containing personal data.
Personal data that has been pseudonymised – eg key-coded – can fall within the scope of the GDPR depending on how difficult it is to attribute the pseudonym to a particular individual.
PLEASE LET US KNOW IF YOU WOULD LIKE YOUR INFORMATION UPDATED OR REMOVED BY EMAILING US at INFO@MWINSTITUTE.CO.UK