Your basket is currently empty.
Account
United Kingdom
Select regional store:
Now in its fourth edition, this bestselling guide is the ideal companion for anyone carrying out a GDPR (General Data Protection Regulation) compliance project. It provides comprehensive guidance and practical advice on complying with the Regulation, including:
Paperback formats are available for all IT Governance Publishing titles on request.
Please contact us for further information:
The GDPR gives individuals significant rights over how their personal information is collected and processed, and places a range of obligations on organisations to be more accountable for data protection.
The Regulation applies to all data controllers and processors that handle EU residents’ personal information. It supersedes the 1995 EU Data Protection Directive and all EU member states’ national laws that are based on it – including the UK’s DPA (Data Protection Act) 1998.
Failure to comply with the Regulation could result in fines of up to €20 million or 4% of annual global turnover – whichever is greater. This guide is a perfect companion for anyone managing a GDPR compliance project. It provides a detailed commentary on the Regulation, explains the changes you need to make to your data protection and information security regimes, and tells you exactly what you need to do to avoid severe financial penalties.
Now in its fourth edition, EU General Data Protection Regulation (GDPR) – An Implementation and Compliance Guide provides clear and comprehensive guidance on the GDPR. It explains the Regulation and sets out the obligations of data processors and controllers in terms you can understand.
“This helps make the GDPR more accessible when reviewing how to apply it to your organisation. Complementary to the online training sessions to enhance confidence on the subject in the workplace”
- Emma
“Its practical approach to various aspects of the GDPR will be of value to DP practitioners in organisations of all sizes”
- Laura Linkomies, Privacy Laws and Business Report, September 2017
While most of the EU GDPR’s requirements are broadly unchanged in the UK GDPR, the context is quite different and will have knock-on effects. You may need to update contracts regarding EU–UK data transfers, incorporate standard contractual clauses into existing agreements, and update your policies, processes and procedural documentation as a result of these changes.
Supplements that set out specific extra or amended information are now available for the bestselling titles EU General Data Protection Regulation (GDPR) – An implementation and compliance guide, fourth edition and EU GDPR – An international guide to compliance, which focus on identifying the key changes and context relating to the UK GDPR. As such, the information contained within the supplements is primarily of interest to organisations in the UK, organisations that process the personal data of UK residents, and organisations that process personal data on behalf of organisations in the UK.
Please visit the publisher’s website to access the supplements
The application of the GDPR in the UK is slightly more problematic as the nation voted to leave the EU and did so after the GDPR came into law. The GDPR has been passed into law in its entirety in the UK under the Data Protection Act 2018, so, in general terms, the compliance activities for UK organisations will remain largely unchanged. One of the key details of the UK’s final departure, however, may have a significant impact: whether the UK will be awarded an adequacy decision from the European Commission.
Learn more about the GDPR and how Brexit may affect data protection law in the UK
The IT Governance Privacy Team, led by Alan Calder, has substantial experience in privacy, data protection, compliance and information security. This practical experience, their understanding of the background and drivers for the GDPR, and the input of expert consultants and trainers are combined in this must-have guide to GDPR compliance.