THE BVRLA is warning members to be ready for the biggest data protection crackdown in 20 years now that the Government has published its new Data Protection Bill which will look to bring EU law into domestic law in preparation for a post-Brexit future.
While data protection used to be more concerned with personal details such as finances, the motor industry’s ‘Big Data’ revolution has been raising concerns for some time.
This has been focused on by the BVRLA’s Fleet Technology Survey respondents wanting new rules on motoring data, strongly agreeing that more standards and regulation are required to control access to and use of vehicle and driver data, especially with the development of connected cars that transmit data.
The BVRLA says the new EU General Data Protection Regulation (GDPR), which takes effect on 25 May 2018, marks the biggest overhaul of data protection since the introduction of the current Data Protection Act (DPA) in 1998.
GDPR will apply to data processing carried out by organisations operating within the EU as well as organisations outside the EU that offer goods or services to individuals in the EU.
Seen as more of an evolution than a revolution, GDPR places greater emphasis on the rights of individuals and imposes tougher penalties on those organisations who fall short of meeting their data protection obligations.
Consent, accessibility, portability and anonymity all form part of the bill which aims to give individuals more control over their personal data.
Matt Hancock, the Minister of State for Digital said: “The EU General Data Protection Regulation (GDPR) and the Data Protection Law Enforcement Directive (DPLED) have been developed to allow people to be sure they are in control of their personal information.
“The Data Protection Bill will allow the UK to continue to set the gold standard on data protection. Implementation will be done in a way that as far as possible preserves the concepts of the Data Protection Act to ensure that the transition for all is as smooth as possible, while complying with the GDPR and DPLED in full.”
The Statement of Intent for A New Data Protection Bill can be read online.