GDPR and DPA 2018
I am sure everyone is aware that new General Data Protection Regulations (GDPR) came into force on May 25th this year. GDPR has direct effect across all EU member states and is in place to ensure organisations comply with GDPR legal obligations. However, GDPR does not take into account individual countries requirements and as a result the UK has updated its Data Protection Act (DPA) 1998 to DPA 2018 which will run alongside GDPR.
What’s the difference between GDPR and DPA 2018? In simple terms, DPA 2018 addresses data protection in respect of the holding and processing of personal data that is covered under UK Law in respect of immigration, criminal law and national security and it also covers Freedom of Information (FOIA).
So DPA 2018 ‘fills in the gaps’ in GDPR and therefore it is important to comply with both and we do.
These changes in Data Protection have increased our focus at MDU on the importance of security in respect of our study participant’s data. Participants in our studies entrust us with their data and as we’ve seen in the news recently this can make or break reputations. We at MDU take our obligations extremely seriously and GDPR/DPA 2018 compliance is one of our top priorities.