The General Data Protection Regulation (GDPR) will come into force on 25 May 2018. The intention behind the updated regulation is to give individuals more say over how companies use and process their personal data. GDPR is relevant to every organisation, no matter how large or small, who collect 'personal data' about European Union (EU) citizens.
In the UK the Information Commissioner's Office (ICO) is an independent authority which upholds the UK legislation relating to Data Protection and other public information rights.
Under GDPR, personal data is defined as any information relating to an identified or identifiable natural person (also known as a data subject), an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier. Personal data identifiers can include basic identity information e.g. name, email address, personal address, date of birth, ID numbers, web data such as location, IP address, and Cookie tags.
You can register a complaint about our handling of your personal data with the ICO, who are the UK's supervisory authority for GDPR. www.ico.org.uk/concerns
For more information on the GDPR and how it governs your personal data you can access all of the detail, definitions and guidance from the ICO at the following link: