Unless you’ve been under a rock for the past few months, you’ll be aware that changes are afoot in the data protection world. Your inbox is probably full of emails from organisations using various catchy phrases to get you to “opt in” to receiving communications (my favourite was headed “darling you’ve got to let me know, will you stay or will you go?” – who said data protection couldn’t be fun?!). But what is GDPR and what does all this mean for you as a therapist?
The Data Protection Bill (“the Bill”) was described in the Queen’s speech of June 2017 as a new law to ensure ‘that the United Kingdom retains its world-class regime protecting personal data’. It supplements and bolsters the General Data Protection Regulation (“GDPR”), the directly effective EU regulation on Data Protection coming into force in May.
The GDPR is coming into force on 25 May 2018. The UK is leaving the EU at 11pm on 29 March 2019. No doubt these dates are engraved into the minds of most business owners. But while these deadlines are enough on their own to leave you with plenty to worry about, it is also important to consider the interplay between the two – that is to say, what will Brexit mean in terms of the GDPR?