GDPR in depth
The GDPR changes are substantial and may impact Island businesses significantly.
These can be summarised as:
- greater accountability and transparency by controllers
- strengthened rights for individuals
- substantial administrative fines
- some processors must comply with certain provisions for the first time
The GDPR is risk-based, the risks being those that may affect the data subject, not the business. Recitals 75 - 76 & 83 - 84 provide further information on what should be considered when assessing the risk to the rights and freedoms of data subjects.
This section is divided into the key areas and you will find symbols on the pages indicating whether there are
changes or new requirements