Coming into force on 25th May 2018, the General Data Protection Regulation (GDPR) is designed to help safeguard data protection rights for individuals and introduces a single set of rules across the EU when it comes to how organisations handle data relating to individuals. GDPR is the most significant change to the European data protection regime in over 20 years.
All organisations that process the data of EU citizens irrespective of size and location will need to be compliant with GDPR. There are some exemptions under GDPR for SME’s but these need to be carefully examined.
Vast amounts of personal data is processed in the construction industry; examples include contact details, employee data, client data, CCTV imagery, health and safety data and data collated from site access cards and wearable technology.
For details on the steps organisations can take to prepare for GDPR please visit the Data Protection Commissioner’s website here or the Information Commissioners office here.