GDPR your data protection responsibilities
GDPR, the General Data Protection Regulation, came into effect on 25 May 2018. Although GDPR originated with the European Union, it is not affected by Brexit. GDPR builds on existing data protection law to strengthen the protection of individuals' personal data.
If your business collects or uses personal data, you must comply with GDPR. You need to review any existing data protection systems, policies and procedures to take account of the changes from the old Data Protection Act.
Better directors for a better world
The IoD supports directors and business leaders across the UK and beyond to learn, network and build successful, responsible businesses.
Managing data is changing
Browse valuable data resources from the IoD.