What is General Data Protection Regulation (GDPR)?
On May 25th, 2018 the General Data Protection Regulation (GDPR) will come into force and it will replace the current data protection framework under the Directive 95/46/EC. The Regulation expects all organizations, regardless of size, to fully comply with the regulation by the time of its implementation. The GDPR introduces a wide range of mandatory changes that organizations have to make. It is important to start preparing now as non-compliance with the Regulation can have serious consequences.
In the provision of acupuncture services, businesses must align their practices with the GDPR or else risk being in violation of the new data protection rules.
Acupuncturists Must Comply with New GDPR Regulations
While there is an exception for organizations with under 250 employees, it is very hard to justify falling under the exception in practice and the exemption does not apply to acupuncturists as they are ‘Processing of special categories of data’. Acupuncturists processing health data or any other categories of sensitive data should therefore maintain records of processing activities.
GDPR Handbook for ACI Practitioners
The GDPR Handbook for ACI Practitioners is designed to provide an overview of the requirements for acupuncturists and to provide practical steps towards compliance. The ACI has worked with EuroComply and have produced a handbook and step-by-step narrated presentation to help ACI members ensure they comply with new GDPR regulations.
ACI members who register for the GDPR Handbook for Practitioners will be emailed a copy of the handbook and can register to receive the masterclass by logging on to the members’ section of the website. Topics included are:
- Overview of GDPR
- Core Principles for Effective Data Protection
- What Does GDPR Apply To
- Processing Information
- Controllers and Processors
- Risks of Non-Compliance
- Transfers to Third Parties
- Available Legal Grounds
- Example Records and SAR Response Examples
- Breach Reporting
Members DownloadsLogin To View or Download Content, Login Here
The information contained in these documents is provided by the Acupuncture Council of Ireland (ACI) for the purposes of distributing general information about the General Data Protection Regulation (GDPR) to the members of ACI. The materials are not intended to provide, and do not constitute, legal advice on the implications on our members as a result of the introduction of GDPR and is provided for assistance and information purposes only for the members of ACI.
ACI is not liable for any loss or damages suffered by any members (or any third party) as a result of reliance on the information provided by ACI on the GDPR and we would recommend that you would seek the appropriate legal or professional advice for any clarification required on GDPR. You should not act or refrain from acting on the basis of any material contained in these publications, without seeking legal or other professional advice.