General Data Protection Regulation (GDPR): implications for nurses and the NHS
The General Data Protection Regulation (GDPR), the new regulation which replaces the Data Protection Directive, comes into force on 25 May.
It could mean heavy fines for any organisations that are non-compliant, and is likely to continue to apply in the UK after Brexit.
This new regulation was approved by the EU parliament in April 2016, but it is only in recent weeks that people have begun talking about it.
The aim of the GDPR is to protect EU citizens from data breaches and protect privacy in an increasingly data-driven world. It will apply to all companies processing personal data in the EU.
Fines for non-compliance
The NHS needs to comply and if it is found to be in breach of the regulations, it could be fined up to 20 million euros.
It is important to note that...