Signup to the newsletter
Hogan Lovells

The General Data Protection Regulation (GDPR): action plan for pension scheme trustees

7 March 2018

The European General Data Protection Regulation (GDPR) will apply directly in the UK from 25 May 2018, and will make some fundamental changes to the current requirements surrounding data protection. Key areas of change include:

  • the information which must be contained in privacy notices (notices stating the use to which an individual's personal data may be put);  
  • what must be done when seeking individuals' consent to the processing of their data; requirements around data subject access requests (when individuals can demand to see the personal data being held about them); and
  • accountability and the sanctions for failure to comply.

Complying with GDPR is expected to be obligatory, regardless of the outcome of the UK's Brexit negotiations. This note explains what trustees should do to prepare for GDPR and sets out practical steps to ensure their scheme is GDPR-ready.

Please click here to read the full briefing note.

© Hogan Lovells. All rights reserved. "Hogan Lovells" or the “firm” refers to the international legal practice that comprises Hogan Lovells International LLP, Hogan Lovells US LLP and their affiliated businesses, each of which is a separate legal entity. Attorney advertising. Prior results do not guarantee a similar outcome.