On 25 May 2018, the Data Protection Act was replaced by the General Data Protection Regulation (GDPR). GDPR brings with it new requirements for the protection and sharing of personal information. As well as extending the reach of data protection requirements (virtually all commercial organisations are now obliged to comply), the new legislation places additional responsibilities on everyone.

For businesses involved in international trade, the new legislation brings specific new responsibilities, relating to the use and care of information about UK and EU citizens.

This topic provides information on handling and processing personal data, employees’ rights of access, dealing with data loss and the penalties employers may face for breaches of the GDPR.

Quick Facts

Key points you need to know on this topic.


Detailed information on all matters in this topic.