On 25 May 2018 the General Data Protection Regulation (GDPR), came into force. GDPR strengthens the legislation on data protection and supersedes the Data Protection Act.
The Regulation sets out two key objectives:
Protection of the fundamental rights and freedoms of individual persons, in particular, the protection of personal data
Protection of the principle of free movement of personal data within the EU
More information on GDPR can be found on the Information Commissioner’s Office (ICO) website: https://ico.org.uk/for-organisations/data-protection-reform/