With the implementation of GDPR on the horizon, there is good and bad news for Irish companies.

February 6th 2017

Helen Dixon, Data Protection Commissioner of Ireland has stated that the arrival of EU’s General Data Protection Regulation (GDPR) will be a game changer for citizens and organisations throughout Ireland.

With the implementation of GDPR on the horizon, there is good and bad news for Irish companies.

‘This revolution is going to change not only what we do, but who we are, and it will affect our identity, our sense of privacy and, without exaggeration, it will affect what it means to be human’

According to Dixon “This revolution is going to change not only what we do, but who we are, and it will affect our identity, our sense of privacy and, without exaggeration, it will affect what it means to be human.”

Already, she said, online tracking and the sharing of personal information is a major challenge.

Dixon said that the EU’s General Data Protection Regulation (GDPR), which comes into effect in May 2018, is designed to enshrine the right to privacy.

Consent must be freely given, specific, informed and unambiguous. Furthermore, if data has been collected for a specific purpose, consent must be obtained for additional processing which is incompatible with the original purpose. Consent may be withdrawn at any time and it must be as easy for a data subject to withdraw their consent as to give it.

“GDPR is a truly game-changing overhaul of European data protection laws that is going to impact every business, every individual and every member of public sector bodies in Europe.

“It will also impact businesses outside of Europe but who target European consumers.

“It is a law that is going to lead the standard for data protection, globally.

“It will include key new rights to better control for users of their personal data and imposes corresponding obligations on organisations that collect data.

“All of this is backed up by a new suite of enforcement powers for data protection authorities, including significant monetary fines.

“This means it is time for businesses, big and small across all sectors, to start preparing now because it can’t be business as usual any longer,” Dixon warned.

An individual will have an explicit right to have their personal data removed from a controller/processor's system and/or online content. This 'right to be forgotten' shall apply in a number of listed circumstances and the controller shall be obliged to erase the data without undue delay.

Download our free paper to find out the highlights from this regulation and what it will mean for your business.

Share this:

Share this: