The General Data Protection Regulation (GDPR) became enforced on 25th May 2018 across EU Member States. The EU’s General Data Protection Regulation is the result of four years of work by the EU to bring data protection legislation into line with new, previously unforeseen ways that data is now used.
Previously, the UK relied on the Data Protection Act 1998, which was enacted following the 1995 EU Data Protection Directive, but this will be superseded by the new legislation. It introduces tougher fines for non-compliance and breaches, and gives people more say over what companies can do with their data. It also makes data protection rules more or less identical throughout the EU.
More information can be found on the Information Commissioners GDPR Website.
Over the last year we have been working closely with a wide range of parties including the Information Commissioners Office, SOLAR, Digital Office for Scottish Local Government and MacRoberts legal services.
The Glow Agreement
We reached a key milestone on the 28th of February 2018 when the new Glow Agreement (a revised GDPR compliant Memorandum of Understanding (MOU)) was approved and subsequently sent to all Glow customers for sign off.
The Glow Agreement replaces the current documentation and it is now a legally binding agreement with no additional data controller/processor agreements required to be signed.