GDPR - General Data Protection Regulation

Image result for gdpr logo

GDPR comes into force 25 May 2018

What is General Data Protection Regulation (GDPR)

  •  Replaces the Data Protection Act 1998 (DPA)
  •  Designed to match data privacy laws across Europe
  •  Redesigned the way organisations across the region approach data privacy
  • Applies to ‘Data Controllers’ and ‘Data Processors’. Similar to the DPA - the controller says how and why personal data is processed
  • Applies to organisations outside the EU that offer goods or services to individuals in the EU

 Why is it changing from the Data Protection Act 1998

  • The European Union’s General Data Protection Regulation (GDPR) represents the biggest change to global privacy laws for over 20 years
  • Many changes involving personal data have occurred since the Act was first introduced. Internet and Social Media now play a major part in society. Patients can now book their GP appointments via the internet and medical records can also be retrieved electronically - all of which were not as readily available in 1998 as they are now.
  • Whilst the GDPR is still based on the same data protection principles as before, it introduces new rights for data subject


Privacy Notice - Healthcare

Privacy Notice - Medical Research

Privacy Notice - National Screening Programmes

Privacy Notice - Meeting Legal Requirements


Call 111 when you need medical help fast but it’s not a 999 emergencyNHS ChoicesThis site is brought to you by My Surgery Website