The Information Commissioner’s Office (ICO), has published its final guidance on consent as a lawful basis for processing personal data under the General Data Protection Regulation (GDPR). 

In my experience of doing GDPR presentations over the last few months, this is an area that is causing particular confusion for small business owners.  This guidance should assist in clarifying a few of the outstanding questions.

This guidance should be read with the ICO Guide to the GDPR

It considers:

  • Why consent is important;
  • What is valid consent;
  • A summary of the main differences between consent under the Data Protection Act 1998 (DPA 1998), the GDPR and the Data Protection Bill 2017-19;
  • When consent is appropriate;
  • How should consent be obtained, recorded and managed.

At Markel Law we regularly comment on SME related matters. Follow this link to find out more about Markel Law and how we can assist your business.  

If you would like more information on our Law Hub for SME's, follow this link.