A rather prophetic statement that perhaps did not anticipate the enormous potential technical innovation that was to come. Misuse of social media, emails and the internet can lead to various problems:
Ÿ Breaches of the DPA
Ÿ Malicious software being allowed in
Ÿ Impact on the performance of staff
Ÿ Damage to your organisation’s reputation
For all these reasons, it is good practice to have an acceptable use policy that explains what your organisation considers to be acceptable use of social media, emails and the internet by members of the organisation and staff. It should also make clear the extent to which use of the internet and emails by members of staff is monitored, so that there is no arbitrary intrusion into the privacy of staff.
WHAT ABOUT THE FUTURE?
The General Data Protection Regulation is EU law, and already technically applies in the UK. Because of the changes required, the EU gave all organisations two years to implement the necessary changes, meaning that
25 May 2018 is the absolute deadline for full compliance. After the Brexit referendum, there was a period of uncertainty as to the applicability of the new legislation, but at the time of writing, the timetable for exit means that the regulation will come into full effect whilst we are still members of the EU. The UK Government have, at the time of writing, published a new bill to bring the GDPR into full UK law, so we are still working on the basis that the GDPR has to be complied with before May 2018.
The main changes about which you need to be aware are set out and explained further below:
Ÿ Focus on accountability and transparency
Ÿ Change to de nition of consent
Ÿ Need for privacy impact assessments
Ÿ Legal requirements for policies
Ÿ Right to be forgotten 216
Chapter 11