Supporting Caldicott Guardians across the UK

GDPR

General Data Protection Regulation (GDPR)

The GDPR comes into effect on 25th May 2018 and is being incorporated into a new Data Protection Bill which is presently (Jan 2018) going through Parliament. The new bill will replace the Data Protection Act (1998). Much of the original legislation is essentially unchanged, but there have been changes in practice and guidance over the years (for example 'privacy by design' and privacy impact assessments) which are being incorporated into the new legislation along with some new requirements, for example around transparency, consent and a 'right to be forgotten'.

General guidance on some implementation aspects has emerged from the EU Article 29 Working Party and the Information Commissioner's Office. Specific guidance for the health and social care sector has been developed by a national working party and the Information Governance Alliance: some of this has been released (see under Information Governance Alliance below); the remainder is expected to be released shortly.

The European Patient's Forum

A guide for patients and patients’ organisations.

Information Commissioner's Office (ICO)

Explains the provisions of the GDPR to help organisations comply with its requirements, intended for those who have day-to-day responsibility for data protection. Comprehensive and updated regularly.

Other guidance of particular relevance to health and social care

Information Governance Alliance (IGA)

Future guidance (awaiting approval or planned)

  • Privacy by design and default
  • Personal data breaches and notification
  • Profiling and risk stratification
  • GDPR overview
  • Primary care suite: optometry, pharmaceutical and dental
  • Transparency and subjects' rights
  • Social care awareness guidance
  • Pseudonymisation

Article 29 Working Party

Guidelines

Adopted guidelines for which consultation is closed, but still to be finalized

Miscellaneous

Health Research Authority

Medical Research Council

British Medical Association

This page last updated: 14th May, 2018