One Year to Go: What Next for UK Firms on the Road to GDPR Compliance?

The final countdown has now begun for the European General Data Protection Regulation (GDPR), a huge and complex piece of legislation designed to update EU law in this area for the digital age. Although there are some exemptions for the smallest firms, all those UK organisations currently governed by the Data Protection Act (DPA) will be expected to comply with the GDPR, in order to ensure the regulation’s two primary aims: to facilitate the free transfer of data between EU states; and to uphold EU citizens’ right to privacy.

However, with some recent stats estimating that as many as 84% of small business owners are unaware of the new regulation, there’s much to be done in the final 12 months before the 25 May 2018 compliance deadline.

Who complies?