General Data Protection Regulation (GDPR): DPO resources

15th May 2018

The General Data Protection Regulation (GDPR) has come into effect in the UK from 25 May 2018. Many concepts and principles of processing personal data under the GDPR are similar to the existing Data Protection Act (DPA); however, now there is a new requirement for certain organisations to appoint a Data Protection Officer (DPO).

This new DPO suite of resources is to help you understand the requirements of appointing a DPO, and the role that needs to be undertaken by them. The suite of resources includes:

• GDPR DPO guidance: this gives an overview on the roles and responsibilities of both the data controller/processor and DPO
• GDPR DPO checklist: this template can be used by the DPO to undertake their role and give action/feedback to the data controller/processor on their compliance with data protection laws and relevant policies
• GDPR definitions and quick reference guide: this is a go-to list of important definitions and the quick reference guide can be used by the DPO to help raise data protection awareness to those in the organisation

In addition:

• The NPA is offering new DPO Workshops that are created specifically to support pharmacy owners to navigate these new requirements. The workshops will provide guidance on using a DPO in your business, how to establish this role in your pharmacy as well as tips for training your team on requirements for consent and data breaches.

Resources available to download: