1.0 The General Data Protection Regulation (GDPR) (EU) is a regulation in EU law on data protection and privacy for all individuals within the European Union. It addresses the export of personal data outside the EU. The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU. When the GDPR takes effect, it will replace the 1995 Data Protection Directive (Directive 95/46/EC)
It was adopted on 27 April 2016. It becomes enforceable from 25 May 2018.
2.0 The following websites provide advice and guidance for Care Home managers and Service providers, on ensuring compliance with GDPR.
• The Care Provider Alliance
• National Care Association
Forms And Referenced Documents For This Procedure
The Information Commissioner’s Office – ico.
25 Key Steps to GDPR Compliance
Information Governance and Information Security