EU guidance on GDPR data breach and profiling

27 October 2017

The Article 29 Working Party – the group of EU data protection authorities charged with agreeing European-wide guidance on General Data Protection Regulation (GDPR) – has published guidelines on profiling and breach reporting.

The breach reporting element is certainly relevant to payroll and pension departments and employers in general. The GDPR introduces the requirement for a personal data breach to be notified to the competent national supervisory authority and, in certain cases, communicate the breach to the individuals whose personal data have been affected by the breach.

Full details and links to guidelines can be found in the Information Commissioner’s Office (ICO) blog.

Guidelines on administrative fines that were adopted earlier this month will also be published shortly.

Consistency across the EU is one of the fundamental drivers of the GDPR and, as the UK member of Article 29 (WP29), they are either leading or assisting in the development of guidance on some of the main aspects of the law.

Employer news

More news

CIPP quick poll

What pension tasks are you responsible for?

Pension contributions i.e. workplace pensions

Best practise on pensioner payrolls

Talking to your employees about pensions

Good governance around employer decision making on pensions

Managing early retirement in all its forms

Deciding on workplace pensions strategy

Protecting pensions and reassurances about pensions promises

Tasks when changing pension schemes

Pensions tax rules

Other, please provide additional details

*denotes a mandatory field

EU guidance on GDPR data breach and profiling

Also of interest

Related news

Tax agents - cyber security questions to ask your IT Provider

08 June 2018

GDPR guidance on personal data breaches

26 January 2018

Consumers looking to exercise rights under GDPR

25 January 2018

The CIPP in numbers

9.5k+

2,800+

15k+

10