The General Data Protection Regulation (GDPR) takes effect from 25 May 2018. The ICO website contains a lot of useful information and guidance on this new legislation. In addition we asked the ICO to review a set of questions and answers (see below) drafted by CIOT and ATT and covering practical GDPR situations faced by members.
Please note that data protection and GDPR is a complex area and this set of FAQ is intended as a helpful introduction only. This guidance is not a substitute for taking appropriate legal, IT and other required professional advice.