What is GDPR? 

The EU General Data Protection Regulation (GDPR) is a new EU regulation that will come into force on 25 May 2018. It will strengthen the current rules under the Data Protection Act (1998) by introducing new obligations for organisations and rights for individuals. 


This new regulation will come into effect before the UK formally leaves the EU. On 21 May 2017, the UK government confirmed that it will introduce a new Data Protection Act to implement the GDPR. It is therefore clear that businesses will need to comply with the GDPR from 25 May 2018 and post-Brexit or face steep penalties. 

These changes will impact how recruiters and recruitment businesses process candidate and client data. It is therefore essential that recruiters familiarise themselves with these changes and begin preparing.  


We are in touch with the Information Commissioners Office (ICO) and are working with our sister federations in Europe to get additional information for our members and contribute to guidance materials.


How we're supporting you

Over the next 12 months, we will be running a series of workshops around the UK to ensure that our members are ready for these changes. Learn more about our GDPR workshops and book your place now.


All GDPR updates can be found on the Legal news and GDPR section in the Legal guide.


Further resources 

Guide icon
A guide to the EU General Data Protection Regulation (GDPR) for REC members - January 2018
Infographic icon Are you ready for the General Data Protection Regulation (GDPR)? infographic
Legal icon
Data Protection is changing: The new General Data Protection Regulation. REC Legal bulletin - July/August 2017
 Blog image  What does the GDPR mean for recruiters? Blog - June 2017
 Webinar icon  Professional Service webinar - an overview of GDPR - June 2017
 Blog icon  The General Data Protection Regulation: what you need to know - Blog - July 2017


Back to top
Award winning services AEA award logoTop 100 - 2017Association Excellence Awards 2017MemCom 2017 Awards