Grant Cardwell, XEYEX
The General Data Protection Regulation (GDPR) is a new EU data protection regime approved by the European Parliament on 14 April 2016 which is due to come into force on 25 May 2018 and replace the existing Data Protection Directive and the Data Protection Act. The new regulations affect the way practices should respond to requests for access to data held about patients. Patients can also request to have their data deleted. Fines for breaching data protection regulations are significantly increased.
In this presentation we will consider what, if any, changes need to be made to practice processes to comply with the new GDPR legislation and how legislation fits with professional standards of practice and good customer service. We will identify barriers to implementation and discuss the implementation of strategies to ensure practices can be fully prepared before the new regulations come into force.