This GDPR infographic is a useful tool to understand how it’s coming along.
“Organisations must obtain unambiguous consent to use and retain data, keep it up to date, delete old data and — if they have a large volume of personal information, data subjects and range of items — will have to appoint a data protection officer.
Consumers will have the right to ask for the information companies hold about them and request that their data is deleted from business databases. The rules forbid companies from processing data on race, ethnicity, political opinions, religious beliefs, trade union membership or sexual orientation without explicit consent.
Ultimately, the impact of GDPR will depend on whether individuals decide to exercise the greater powers the rules give them. They are part of a growing worldwide push for customers to mature into “digital adults”, with both greater control over and responsibility for their own information. Proponents hope that GDPR will help individuals become both more demanding and more aware of their power.FT