General Data Protection Regulation (GDPR)
The EU General Data Protection Regulation (GDPR) comes into effect from 25th May 2018 - at which time those organizations in non-compliance may face heavy fines.
The aim of the GDPR is to protect all EU citizens from privacy and data breaches in an increasingly data-driven world that is vastly different from the time in which the 1995 directive was established. Although the key principles of data privacy still hold true to the previous directive, many changes have been proposed to the regulatory policies; the key points of the GDPR as well as information on the impacts it will have on business can be found in the below GDPR 2018 report.
The introduction of this new legislation may sound scary but in actuality aspects such as Patient Confidentiality have always been a key responsibility of pharmacy so most companies will already have a privacy policy in place which will simply need to be updated in order for it to fully comply with this new legislation. In order to comply it is of paramount importance that research is conducted by each organisation to gain a better understanding of the key changes and then a plan of action is drawn up to ensure all procedures and policies are in place by the 25th May. For a handy 12-Step Preparation Guide to the GDPR please download our report below.
Also, it is equally important to ensure that all staff are trained to understand GDPR and the training logged for audit purposes. Templates can be downloaded on the NPA website.
To comply with the new legislation please read our updated Privacy Policy.