GDPR image


The General Data Protection Regulations (GDPR) are new EU laws which aim to unify and strengthen data protection for all individuals in the European Union and the UK. These came into effect on the 25th of May 2018.

The Data Protection Act 2017 replaces the DPA 1998 and describes how some parts of the GDPR are applied in the UK. It also covers some areas which the GDPR does not. Together, these two pieces of legislation seek to modernise the way in which data should be handled to reflect the ways in which organisations now use personal information, which were unforeseen when previous data protection laws were written. 

Our GDPR pack which you can access below will help you to work towards compliance for the change in data protection regulations. Data protection will still be regulated by the Information Commissioner’s Office (ICO).


Our GDPR pack which will help you to work towards compliance for the upcoming change in data protection regulations. This is in four parts as follows:

  1. Guidance – Full background information
  2. Summary Guidance – A handy quick reference guide
  3. Workbook – By working through this, you will be able to demonstrate compliance
  4. FAQs

We would like to thank the UK GDPR Working Group for the source material, which has been adapted and added to for use in Scotland.

These are very much live documents, and we will update them as we receive feedback from you and as we continue to learn about GDPR in practice.

On reading the documents through, if you have any further questions please contact Adam in the Policy and Development department.


If you have any questions on GDPR, please contact Adam in our Policy and Development team.

Related Information