General Data Protection Regulations (GDPR)
What is GDPR?
The EU General Data Protection Regulation (GDPR) applies to all EU member states and will come into force on 25th May 2018. The GDPR is to be read in conjunction with the Data Protection Bill published in September 2017. The overall aim of the GDPR is to protect individuals from data and privacy breaches in an environment that is driven by technological advances.
The GDPR is based on the 1980 ‘Protection of Privacy and Transborder Flows or Personal Data Guidelines’ which outlined the following eight principles:
The GDPR requires practices to process data ‘fairly’ and in a ‘transparent manner’ which is ‘easily accessible and easy to understand’. This means that practices must provide information to patients about how the practice processes patient data in the form of ‘Practice Privacy Notices PPN)’.
Practice Privacy Notice
Privacy Information Leaflet adults
Privacy Information Leaflet for Children
GDPR Childrens Poster