Information Commissioner's Office
GDPR guidance in 2017
Blog posted by: Jo Pedder, Interim Head of Policy Delivery, January 17, 2017.
There’s nothing like a new year to focus the mind on self-improvement. And from a data protection perspective, there’s something about the arrival of 2017 that makes the implementation of GDPR in May 2018 seem so much closer.
The ICO remains committed to helping organisations to improve their practices and prepare for the GDPR. Today we’ve published an update setting out What guidance organisations can expect. It’s essential reading, as it will help you plan what areas to address across the next twelve months.
Consistency across the EU is one of the key drivers of the GDPR, and the Article 29 Working Party – the body that currently brings together the DP authorities across Europe – is leading the way developing guidelines on some of the key aspects of the law. As the UK member of the Article 29 Working Party, we’re inputting into this process and taking a lead role on a number of priority guidelines aimed at organisations.
The update explains the work that we will be contributing in the coming year as part of the Article 29 Working Party, as well as the guidance and policy development we have opted to prioritise ourselves.
The central pillar to our guidance is the Overview of the GDPR. We are developing the Overview as a living document, adding content on different points as more guidance is produced by us and the Article 29 Working Party. This is available now on our website.
It’s worth adding the Overview to your favourites so that you can check regularly for updates, which will be clearly flagged in the ‘what’s new’ section. Where we are working on guidance, or we are planning events or consultations on a particular issue during the year we will flag these in the Overview too.
Just before Christmas the Article 29 Working Party published guidelines on the role of the Data Protection Officer, the new right of data portability and how to identify an organisation’s main establishment and lead supervisory authority. They are open to comment until the end of January. We have added links to the guidelines into the Overview and we are considering what, if any, key messages we need to draw out and explain in more detail.
Don’t forget, we’ll be including all the key updates in our enewsletter, and flagging progress on twitter too.
Jo Pedder is Interim Head of Policy Delivery. She has lead responsibility for the ICO’s guidance on the Data Protection Act and the Freedom of Information Act.
Related Link: Guidance: what to expect and when
Latest News from
Information Commissioner's Office
Personal data must be safe from prying eyes17/11/2017 15:20:00
Blog posted by Mike Shaw, Enforcement Group Manager, November 16, 2017.
Nursing auxiliary fined for unlawfully accessing patient records17/11/2017 12:20:00
A nursing auxiliary has been fined for accessing a patient’s medical records without a valid legal reason.
Warning for workers after charity employee is prosecuted for data protection offences09/11/2017 12:15:00
People working with personal information have been warned they have to obey strict privacy laws after a charity worker was prosecuted for making his own copies of sensitive data.
ICO survey shows most UK citizens don’t trust organisations with their data06/11/2017 15:05:00
The ICO’s Deputy Commissioner will be reminding organisations to be transparent with people’s personal data after a survey revealed a significant deficit of trust that organisations must address if they want to innovate with personal information.