Article: Volume 11 Number 3 Page 110 - July 2018

Prev    Article P110    Next  Read article

  Orth Update 2018; 11: 110-114

Orthodontics:  Data Protection is Changing – the New General Data Protection Regulations (GDPR)

CPD:  CPD  0:00   (closed)      Self assess

Feedback:  0 comments, 0 ratings

Abstract: The General Data Protection Regulations (GDPR) govern the use of personal data within the European Union as from 25th May 2018. This supersedes the legislation of the Data Protection Act (DPA). Whilst it has many similarities to the DPA, it has significant enhancements that require active engagement to ensure compliance. It is a requirement for practices to appoint a Data Protection Officer, pay the Information Commissioners Office (ICO) fee, update their privacy notices, create written contracts between controllers and processors, identify and document the lawful basis for processing data, and comply with the rights of individuals.

Clinical relevance: Data protection regulations have changed as part of EU legislation. These changes applied from 25th May 2018 and are applicable to all.

Author notes: Nicholas Hemmings, BDS, MSc, MOrth RCS(Ed), FDS RCS(Ed), Consultant Orthodontist, Ashford and St Peter’s Hospitals, Joseph Noar, BDS, MSc, MOrth RCS(Eng), DOrth RCS(Eng), FDS RCS(Ed), FDS RCS(Eng), Consultant Orthodontist, Eastman Dental Hospital/Institute, 256 Gray’s Inn Road, London WC1X 8LD, UK.

Objective: To understand that GDPR is the new legislation governing data protection, and that there are important changes and enhancements that need to be adhered to for compliance which will impact on dental practice. A large focus is on the responsibilities of the date controller and data processor, plus accountability of all concerned in avoiding data misuse.