The Information Commissioner’s Office (ICO) has published more information about the guidance it will be releasing on the EU General Data Protection Regulation (GDPR). Writing in the ICO blog, Jo Pedder, the interim head of policy delivery at the ICO, described the upcoming guidance as “essential reading”. The update explains the work that the ICO will be contributing in the coming year as part of the EU Article 29 Working Party (WP29), and separately on issues not currently being considered by the WP29.
Complementary to its existing guidelines, published in December 2016, on data portability, lead supervisory authorities and data protection officers, in 2017 the WP29 intends to produce guidance documents on:
- Administrative fines
- High-risk processing and data protection impact assessments
- Notification of personal data breaches
- Tools for international transfers
These will complement its existing guidelines on data portability, lead supervisory authorities and data protection officers, which were published in December 2016.
The ICO plans to publish additional guidance on the following topics early in 2017:
- Contracts and liability
We will update you when they are published – subscribe to our Daily Sentinel for daily updates.
Prepare for the GDPR
Do not take the risk of ignoring the GDPR. Get started immediately by attending the next session of our Certified EU General Data Protection Regulation Foundation (GDPR) classroom training course. To support organisations in all areas of the UK, we are running regular one-day sessions of this course in London, Cambridge, Manchester, Birmingham and Edinburgh.