The General Data Protection Regulation (GDPR) that comes into force on 25th May 2018 has been keeping us really busy writing and updating data protection policies.
Companies have been reviewing their employee handbook to ensure that their data protection policy is up to date, or in some cases plugging the gap where there wasn’t an existing policy.
A data protection policy needs to be tailored to each business’s circumstance, but broadly speaking the policy should cover: