{"id":11017,"date":"2018-04-05T14:45:00","date_gmt":"2018-04-05T14:45:00","guid":{"rendered":"http:\/\/www.webhosting.uk.com\/blog\/?p=11017"},"modified":"2025-10-24T12:07:55","modified_gmt":"2025-10-24T12:07:55","slug":"15-essential-facts-about-general-data-protection-regulation-gdpr","status":"publish","type":"post","link":"https:\/\/www.webhosting.uk.com\/blog\/15-essential-facts-about-general-data-protection-regulation-gdpr\/","title":{"rendered":"15 Essential Facts about General Data Protection Regulation (GDPR)"},"content":{"rendered":"\r\n<p class=\"wp-block-paragraph\">The 25th May will see the coming into force of the General Data Protection Regulation (GDPR). Its aim is to make data protection more robust and to give individuals greater control over their privacy. The regulation applies to all data held about EU citizens and will, therefore, affect every organisation that collects it. To give you an overview of the scope of the regulation, here are fifteen essential facts you need to know about GDPR.<\/p>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\" id=\"privacy-rights\"><strong>Privacy rights<\/strong><\/h2>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Following its implementation, every citizen in the EU will have the following privacy rights:<\/p>\r\n\r\n\r\n\r\n<ol>\r\n<li id=\"1-the-right-to-access-their-data\"><strong>The right to access their data<br \/><\/strong>From 25<sup>th<\/sup> May, any EU citizen has the right to be given access to any personal data an organisation holds about them &#8211; and be informed about how it is processed and used. Organisations will have to provide these details on request.<\/li>\r\n<li><strong>Data correction rights<br \/><\/strong>The new regulation stipulates that any personal information an organisation holds must be accurate. Where errors occur, individuals can demand that corrections are made.<\/li>\r\n<li><strong>The right to be forgotten<br \/><\/strong>GDPR also provides the right to be forgotten. Therefore, if an individual requests it, an organisation must stop processing and delete all the data it has concerning that person.<\/li>\r\n<li><strong>Data portability rights<br \/><\/strong>Individuals can also request that personal data you hold about them is transferred to other organisations. This includes purchase histories, employment records, call logs, gas and electric consumption records, no-claims bonuses, etc.<\/li>\r\n<li><strong>Data breach notification rights<br \/><\/strong>Under GDPR, delaying the notification of a data breach is forbidden. There is now a legal obligation to inform customers and regulatory bodies within 72 hours of the breach taking place.<br \/>Areas of data protection<br \/>GDPR puts in place the following protections:<\/li>\r\n<li><strong>Protecting data that identifies individuals<br \/><\/strong>GDPR applies to any information which can be used to identify an individual. Besides obvious data, like names and addresses, this includes things like passport numbers, car registration numbers and even CCTV recordings.<\/li>\r\n<li><strong>Protecting demographic data<br \/><\/strong>Data regarding an individual\u2019s race, age, gender, disability, ethnicity and sexual orientation is also protected under the new regulation.<\/li>\r\n<li><strong>Web data protection<br \/><\/strong>Under GDPR, web data, including IP addresses, location data, email addresses, browsing histories and cookie data are all regarded as personal data which needs to be secure from loss, hacking or theft.<\/li>\r\n<li><strong>Political views<br \/><\/strong>While the \u2018Vote for\u2019 poster in the front window might be a dead giveaway, this doesn\u2019t mean that data held about a person\u2019s political views is not private. It is. If you store information about party memberships, political opinions, previous voting habits or any similar information, it must be securely protected.<\/li>\r\n<li><strong>Biometric, genetic and health data<br \/><\/strong>The potential theft and sale of biometric, genetic and health data can have huge consequences. For this reason, all these forms of data come under the auspices of GDPR.<br \/>Requirements on organisations<br \/>GDPR places the following requirements on organisations:<\/li>\r\n<li><strong>Data protection by design<br \/><\/strong>One requirement of GDPR is that organisations must implement data protection measures by design. The term \u2018by design\u2019 requires data security to be in place from the beginning to end of the data lifecycle &#8211; from collection to deletion.<br \/>As part of this, organisations need to carry out a \u2018data protection impact assessment\u2019 to identify risks and outline ways to address them.<\/li>\r\n<li><strong>The Data Protection Officer<br \/><\/strong>Another requirement of GDPR is that organisations which process or store sensitive data or significant amounts of personal data must establish a Data Protection Officer (DPO) role. This also applies to any organisation that regularly monitors data subjects. The DPO has overall responsibility and is ultimately accountable for data protection, privacy and GDPR compliance.<\/li>\r\n<li><strong>Protection beyond the EU<br \/><\/strong>GDPR\u2019s jurisdiction is not limited to within the geographical borders of the EU; instead, it extends to organisations outside of the EU that process EU citizens\u2019 personal data. Whilst this may seem impossible to fully enforce, it means non-European companies that wish to trade in the EU will have to follow the same rules as EU organisations.<br \/>Other key points<\/li>\r\n<li><strong>Post-Brexit GDPR<br \/><\/strong>The UK government is fully supportive of GDPR and is committed to making sure that the rights and responsibilities it gives continue after Brexit. Indeed, if we are to continue to trade with the EU, any UK organisations that keep data from EU citizens would still need to comply.<\/li>\r\n<li><strong>Hefty fines for non-compliance<br \/><\/strong>The one thing that has made GDPR hit the headlines is the eye-watering size of the fines for non-compliance. The maximum fine is \u20ac20 million or 4% of an organisation\u2019s annual global turnover, whichever is higher. This level of fine can be handed out for not adhering to core principles of data processing, for infringement of personal rights, or for passing personal data to third parties that do not adequately protect data \u2013 in other words, to organisations that are not GDPR compliant.<\/li>\r\n<\/ol>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\" id=\"how-webhosting-uk-looks-after-your-data\"><strong>How Webhosting UK looks after your data<\/strong><\/h2>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">WHUK began preparations for GDPR in 2015 and has everything in place to protect the data we hold about our customers and to help them protect the data they hold on others.<br \/><br \/><strong>Our security measures include:<\/strong><\/p>\r\n\r\n\r\n\r\n\r\n\r\n<ul class=\"wp-block-list\">\r\n<li><strong><a title=\"SSL\" href=\"https:\/\/www.webhosting.uk.com\/ssl-certificates\">SSL<\/a><\/strong> encryption to secure personal ID<\/li>\r\n\r\n\r\n\r\n<li>authentication of user ID using verified email addresses and unique security pins<\/li>\r\n\r\n\r\n\r\n<li>direct consent needed before we make changes to your account<\/li>\r\n\r\n\r\n\r\n<li>no information shared with third parties (unless legally required).<\/li>\r\n<\/ul>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">We fully train all WHUK database engineers to ensure the security and management of data comply with strict industry regulations. We secure private data with mod security rules and robust physical, electronic and managerial procedures. To prevent data loss in the event of a disaster, we backup shared servers.<\/p>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">For highly secure hosting from a GDPR compliant service provider, check out <strong><a title=\"Webhosting UK\" href=\"https:\/\/www.webhosting.uk.com\/\">Webhosting UK<\/a><\/strong> to find our full range of hosting solutions.<\/p>\r\n","protected":false},"excerpt":{"rendered":"<p>The 25th May will see the coming into force of the General Data Protection Regulation (GDPR). Its aim is to make data protection more robust and to give individuals greater&hellip;<\/p>\n<p><a href=\"https:\/\/www.webhosting.uk.com\/blog\/15-essential-facts-about-general-data-protection-regulation-gdpr\/\" class=\"more-link\">Read More<\/a><\/p>\n<div class='heateorSssClear'><\/div><div  class='heateor_sss_sharing_container heateor_sss_horizontal_sharing' data-heateor-sss-href='https:\/\/www.webhosting.uk.com\/blog\/15-essential-facts-about-general-data-protection-regulation-gdpr\/'><div class='heateor_sss_sharing_title' style=\"font-weight:bold\" >Spread the love<\/div><div class=\"heateor_sss_sharing_ul\"><a aria-label=\"Facebook\" class=\"heateor_sss_facebook\" href=\"https:\/\/www.facebook.com\/sharer\/sharer.php?u=https%3A%2F%2Fwww.webhosting.uk.com%2Fblog%2F15-essential-facts-about-general-data-protection-regulation-gdpr%2F\" title=\"Facebook\" rel=\"nofollow noopener\" target=\"_blank\" style=\"font-size:32px!important;box-shadow:none;display:inline-block;vertical-align:middle\"><span class=\"heateor_sss_svg\" style=\"background-color:#0765FE;width:40px;height:40px;display:inline-block;opacity:1;float:left;font-size:32px;box-shadow:none;display:inline-block;font-size:16px;padding:0 4px;vertical-align:middle;background-repeat:repeat;overflow:hidden;padding:0;cursor:pointer;box-sizing:content-box\"><svg style=\"display:block;\" focusable=\"false\" aria-hidden=\"true\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"100%\" height=\"100%\" viewBox=\"0 0 32 32\"><path fill=\"#fff\" d=\"M28 16c0-6.627-5.373-12-12-12S4 9.373 4 16c0 5.628 3.875 10.35 9.101 11.647v-7.98h-2.474V16H13.1v-1.58c0-4.085 1.849-5.978 5.859-5.978.76 0 2.072.15 2.608.298v3.325c-.283-.03-.775-.045-1.386-.045-1.967 0-2.728.745-2.728 2.683V16h3.92l-.673 3.667h-3.247v8.245C23.395 27.195 28 22.135 28 16Z\"><\/path><\/svg><\/span><\/a><a aria-label=\"X\" class=\"heateor_sss_button_x\" href=\"https:\/\/twitter.com\/intent\/tweet?text=15%20Facts%20about%20General%20Data%20Protection%20Regulation&url=https%3A%2F%2Fwww.webhosting.uk.com%2Fblog%2F15-essential-facts-about-general-data-protection-regulation-gdpr%2F\" title=\"X\" rel=\"nofollow noopener\" target=\"_blank\" style=\"font-size:32px!important;box-shadow:none;display:inline-block;vertical-align:middle\"><span class=\"heateor_sss_svg heateor_sss_s__default heateor_sss_s_x\" style=\"background-color:#2a2a2a;width:40px;height:40px;display:inline-block;opacity:1;float:left;font-size:32px;box-shadow:none;display:inline-block;font-size:16px;padding:0 4px;vertical-align:middle;background-repeat:repeat;overflow:hidden;padding:0;cursor:pointer;box-sizing:content-box\"><svg width=\"100%\" height=\"100%\" style=\"display:block;\" focusable=\"false\" aria-hidden=\"true\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 32 32\"><path fill=\"#fff\" d=\"M21.751 7h3.067l-6.7 7.658L26 25.078h-6.172l-4.833-6.32-5.531 6.32h-3.07l7.167-8.19L6 7h6.328l4.37 5.777L21.75 7Zm-1.076 16.242h1.7L11.404 8.74H9.58l11.094 14.503Z\"><\/path><\/svg><\/span><\/a><a aria-label=\"Linkedin\" class=\"heateor_sss_button_linkedin\" href=\"https:\/\/www.linkedin.com\/sharing\/share-offsite\/?url=https%3A%2F%2Fwww.webhosting.uk.com%2Fblog%2F15-essential-facts-about-general-data-protection-regulation-gdpr%2F\" title=\"Linkedin\" rel=\"nofollow noopener\" target=\"_blank\" style=\"font-size:32px!important;box-shadow:none;display:inline-block;vertical-align:middle\"><span class=\"heateor_sss_svg heateor_sss_s__default heateor_sss_s_linkedin\" style=\"background-color:#0077b5;width:40px;height:40px;display:inline-block;opacity:1;float:left;font-size:32px;box-shadow:none;display:inline-block;font-size:16px;padding:0 4px;vertical-align:middle;background-repeat:repeat;overflow:hidden;padding:0;cursor:pointer;box-sizing:content-box\"><svg style=\"display:block;\" focusable=\"false\" aria-hidden=\"true\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"100%\" height=\"100%\" viewBox=\"0 0 32 32\"><path d=\"M6.227 12.61h4.19v13.48h-4.19V12.61zm2.095-6.7a2.43 2.43 0 0 1 0 4.86c-1.344 0-2.428-1.09-2.428-2.43s1.084-2.43 2.428-2.43m4.72 6.7h4.02v1.84h.058c.56-1.058 1.927-2.176 3.965-2.176 4.238 0 5.02 2.792 5.02 6.42v7.395h-4.183v-6.56c0-1.564-.03-3.574-2.178-3.574-2.18 0-2.514 1.7-2.514 3.46v6.668h-4.187V12.61z\" fill=\"#fff\"><\/path><\/svg><\/span><\/a><\/div><div class=\"heateorSssClear\"><\/div><\/div><div class='heateorSssClear'><\/div>","protected":false},"author":147,"featured_media":11023,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2342],"tags":[1392,1393,1391],"ppma_author":[2389],"class_list":["post-11017","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-business","tag-gdpr-explained-simply","tag-gdpr-overview","tag-gdpr-simplified"],"authors":[{"term_id":2389,"user_id":147,"is_guest":0,"slug":"niraj-chhajed","display_name":"Niraj Chhajed","avatar_url":{"url":"https:\/\/www.webhosting.uk.com\/blog\/wp-content\/uploads\/2016\/10\/1671629317463.jpg","url2x":"https:\/\/www.webhosting.uk.com\/blog\/wp-content\/uploads\/2016\/10\/1671629317463.jpg"},"author_category":"1","user_url":"https:\/\/www.webhosting.uk.com\/","last_name":"Chhajed","first_name":"Niraj","job_title":"","description":"I'm a SEO and SMM Specialist with a passion for sharing insights on website hosting, development, and technology to help businesses thrive online."}],"_links":{"self":[{"href":"https:\/\/www.webhosting.uk.com\/blog\/wp-json\/wp\/v2\/posts\/11017","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.webhosting.uk.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.webhosting.uk.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.webhosting.uk.com\/blog\/wp-json\/wp\/v2\/users\/147"}],"replies":[{"embeddable":true,"href":"https:\/\/www.webhosting.uk.com\/blog\/wp-json\/wp\/v2\/comments?post=11017"}],"version-history":[{"count":11,"href":"https:\/\/www.webhosting.uk.com\/blog\/wp-json\/wp\/v2\/posts\/11017\/revisions"}],"predecessor-version":[{"id":17679,"href":"https:\/\/www.webhosting.uk.com\/blog\/wp-json\/wp\/v2\/posts\/11017\/revisions\/17679"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.webhosting.uk.com\/blog\/wp-json\/wp\/v2\/media\/11023"}],"wp:attachment":[{"href":"https:\/\/www.webhosting.uk.com\/blog\/wp-json\/wp\/v2\/media?parent=11017"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.webhosting.uk.com\/blog\/wp-json\/wp\/v2\/categories?post=11017"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.webhosting.uk.com\/blog\/wp-json\/wp\/v2\/tags?post=11017"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.webhosting.uk.com\/blog\/wp-json\/wp\/v2\/ppma_author?post=11017"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}