What does ‘accountability’ mean in the GDPR? #GDPR

The GDPR requires active and demonstrable compliance with data protection principles. Under the Data Protection Act 1998, which is being replaced, compliance was required but did not need to be demonstrated until perhaps a problem, for example, data breach occurred. The GDPR requires a pro-active, quality assurance approach to data protection and recognition that you must take steps to protect personal data and keep it secure.

For pharmacies, this will mean that records must be kept of the activities on an ongoing basis. This is not a record of everything undertaken, rather a record of classes of processing demonstrating adherence to the principles relating to the processing of personal data.

View our GDPR page for more information