The GDPR aims to give control to citizens over their personal data and in order to achieve this citizens need a well defined and enforceable privacy framework in conjunction with open access to information on all companies processing personal data. With the GDPR coming into effect; the UK’s Data Protection Authority, the Information Commissioner’s Office (ICO), is still is not ready. This is good news for all UK companies that are still coming to terms with the new GDPR requirements.

Starting from January 2017, the  ICO published several documents offering guidance on various aspects of the GDPR and since the implemetation of the GDPR, the ICO has introduced into their registration the option to appoint a Data Protection Officer. OpenConsent appreciates the efforts the ICO have made in transitioning towards new regulatory requirements however they still have a lot of work to do. The ICO stll haven’t published their register, a key component with respect to ensuring transparency within the UK.