When attempting to determine how to proceed with privacy and data compliance, many small businesses are questioning why there is a new Data Protection Act 2018 and European Union’s GDPR. The simplified answer is that the GDPR and the DPA 2018 complement one another
The GDPR was adopted on 14 April 2016, and became enforceable on 25 May 2018. The majority of the intricate legal conditions that all enterprises must comply with are defined in the GDPR itself. However, the GDPR doesn’t incorporate everything that is necessary to have a feasible data protection program, therefore each EU country continues to have some of its individual regulation to “fill the gaps”, this is where the new UK Data Protection Act 2018 comes into play.