Online Courses FAQs
Choosing the right course or knowing which one best suits your requirements can be difficult, here we answer the most commonly asked questions about popular topics to help.
GDPR in the Workplace FAQs
GDPR is applicable to most workplaces in the UK, make sure you are aware of the latest requirements with our FAQs.
-
Do I need to comply with GDPR?
Any business that holds personal data about a resident of the European Union needs to comply with GDPR, whether the processing of that data takes place in the EU or not. Any business that offers free or paid goods or services to EU residents needs to comply.
-
How do I know if I am GDPR compliant?
The best way to check that you are GDPR compliant is to complete a Data Protection Impact Assessment from the ICO and, if needed, contact ICO for more information and advice afterwards.
Make sure you have met GDPR legislation with our guide.
-
How long do you have to respond to a GDPR request?
Once a GDPR data request has been made, organisations have to respond no later than one calendar month from the receipt of the request. For more complex requests or multiple requests, the limit is three calendar months.
- What is the main aim of the GDPR?
The main purpose of GDPR is to standardise and update the data protection laws across the European Union, which were previously dated and inconsistent.
Discover more about GDPR's key principles with our guide.
- What is the maximum fine for not complying with the GDPR?
The maximum fine for a data breach under GDPR is 4% of annual turnover or €20m if that is a greater amount.
- Do I need to register with ICO under GDPR?
Data controllers (businesses that determine the purpose for which personal data is processed) need to register with ICO and pay a data protection fee, unless they are exempt (which applies to members of the House of Lords, elected representatives and prospective representatives).
- What is the main aim of the GDPR?
