GDPR: Precisely a year to compliance

25 May 2017



The GDPR comes into force precisely a year from today and will supersede the UK Data Protection Act 1998 (“DPA”). The regulation was adopted on 27 April 2016, and will come into full force from 25 May 2018 after a two-year preparatory transition period. The primary objective of the regulation is to give individuals back control of their personal data, for example, by requesting details of information held by organisations, exercising the right of erasure (i.e. right to be forgotten) and applying for their data to be ported to a different service provider.


Non-compliance with the GDPR will result in penalties of up to €20m or up to 4% of annual global turnover, whichever is greater.

Contact us

Safdar Mirza

Information Security & Data Privacy Specialist

Tel: +44 (0) 203 865 0626

Ahmed Nawab​

IS Specialist

Tel: +44 (0) 203 865 0625

© 2018 by Hansuke Consulting Limited


Hansuke Consulting Limited is registered in England and Wales number 10136213 with its registered office at: 71-75 Shelton Street, London WC2H 9JQ. Hansuke Consulting Limited is an accredited and regulated member firm of the Institute of Chartered Accountants in England and Wales (ICAEW).


In accordance with the disclosure requirements of the Provision of Services Regulations 2009, our professional indemnity insurer is International General Insurance Co (UK) Limited, of 133 Houndsditch London EC3A 7AH. The territorial coverage is worldwide excluding professional business carried out from an office in the United States of America or Canada and excludes any action for a claim brought in any court in the United States of America or Canada.