The General Data Protection Regulation (GDPR) came into effect on 25 May 2018.  The ICO website contains a lot of useful information and guidance on this new legislation.  In addition we asked the ICO to review a set of questions and answers drafted by CIOT and ATT and covering practical GDPR situations faced by members.

Please note that data protection and GDPR is a complex area and this set of FAQ is intended as a helpful introduction only.  This guidance is not a substitute for taking appropriate legal, IT and other required professional advice.