GDPR in depth

The GDPR changes are substantial and may impact Island businesses significantly.

These can be summarised as:

greater accountability and transparency by controllers
strengthened rights for individuals
substantial administrative fines
some processors must comply with certain provisions for the first time

The GDPR is risk-based, the risks being those that may affect the data subject, not the business. Recitals 75 - 76 & 83 - 84 provide further information on what should be considered when assessing the risk to the rights and freedoms of data subjects.

This section is divided into the key areas and you will find symbols on the pages indicating whether there are

changes or new requirements

EU General Data Protection Regulation
910.8KB