GDPR update in the UK
It is just over four years since the EU’s General Data Protection Regulation (GDPR) came into force. At that time, UK businesses were forced to implement new procedures to ensure compliance.
Once the UK left the EU, the rules were taken into domestic law as UK GDPR, but that situation is set to change as the Government has published its response to Data: a New Direction, a consultation on reforms which are expected to create “an ambitious, pro-growth and innovation-friendly data protection regime”.
The consultation response sets out a series of proposals to reform the UK GDPR in ways that better enable innovation, drive scientific research and position the UK as a more attractive data economy whilst maintaining a high standard of data protection rights that will help preserve data sharing agreements with international partners, including the EU.
Based on feedback from just under 3000 consultation responses, the Government has set out the changes it will take forward in reforming the UK’s data protection regime, which have been laid before Parliament as a draft Bill which proposes to scrap what the Government calls “red tape and pointless paperwork”, while lowering the barrier for personal data to be used in scientific research.
The Bill will remove need for certain organisations, such as small businesses, to have a Data Protection Officer (DPO) and to undertake lengthy impact assessments. As details become clearer, 121 HR Solutions will be ready with advice for employers.