The General Data Protection Regulation (GDPR) will come into force on the 25th May 2018, replacing the existing data protection framework under the EU Data Protection Directive. Under the Irish Data Protection Acts, a data controller is the individual or the legal person who controls and is responsible for the keeping and use of personal information on computer or in structured manual files. Therefore, Chambers and businesses resident in Ireland who are processing or collecting personal data come under the title of data controllers and are thus required to comply with the requirements of the Data Protection Acts.
Please find attached the following resources which have been compiled to provide guidance to Chambers and their members with regard to Data Protection:
For Chambers: Responsibilities for Data Controllers
For Chambers: Data Protection and Direct Marketing Communications
These resources are also to be available on the Chambers Ireland members section www.chambers.ie
The Data Protection Commissioner (GDP)has launched a GDPR-specific website www.GDPRandYou.ie with guidance to help individuals and organisations become more aware of their enhanced rights and responsibilities under the General Data Protection Regulation.
The DPC has also prepared an introductory document for organisations to help them as they transition to GDPR: “The GDPR and You”. This document lists 12 steps which organisations should take in order to be GDPR ready by 25 May 2018. It should be noted that the guide is not an exhaustive list and organisations should ensure that their preparations take account of all actions required to bring them into compliance with the new law.