By Steve Mair - Senior Cyber Security Consultant at PGI
As we get closer to May 2018, I'm sure we'll see an increase in the hype and uncertainty around the General Data Protection Regulation (GDPR) and what it means in the UK. (To remind you, GDPR comes into force on 25th May 2018.) I've spoken to a number of people over the past few months, all with differing views of how GDPR is going to affect their businesses and all of us as individuals.
I thought it worth taking a step back and looking for a moment at what GDPR is, but am not going to take your time up trying to reinvent the wheel. Instead, I'll just suggest that if you want an overview, read this article from the ICO.
One of the areas of concern which I've heard raised is around the impact of Brexit. Some people have suggested that once the UK is no longer a member of the EU, there will be no need for controls like GDPR and that there may even be a loosening of controls with the Data Protection Act (DPA). This raises a couple of points, which I'll briefly cover here.