References
The firm hand of the law: ensuring compliance with the General Data Protection Regulation
Abstract
Data compliance is a mandatory task that carries with it harsh penalties for breaches. Adam Bernstein, in collaboration with Carl Johnson, explains why clinics need to pay attention to the new laws in place
The data that clinics hold on employees, suppliers and clients, are very important and need protecting. This is supported by the very fact that Europe brought in a new data protection regime last year, the General Data Protection Regulation (GDPR), which the UK put into effect with the Data Protection Act 2018.
Sadly, it is not difficult to find examples of firms that have been caught out by the actions of wayward (ex) employees abusing systems they have been allowed access to by trusting employers.
» Individuals have numerous rights under the GDPR, such as the right of access, the right to rectification and the right to erasure «
In late 2018 (albeit, this is an example from the motor industry), an individual was given a 6-month prison sentence for accessing thousands of customer records containing personal data without permission (Information Commissioner's Office, 2018). He used his colleagues' log-in details to access a software system that estimates the cost of vehicle repairs.
Register now to continue reading
Thank you for visiting Journal of Aesthetic Nurses and reading some of our peer-reviewed resources for aesthetic nurses. To read more, please register today. You’ll enjoy the following great benefits:
What's included
-
Limited access to clinical or professional articles
-
New content and clinical newsletter updates each month