The EU General Data Protection Regulation (GDPR) comes into force in July 2018. The new rules are designed to protect consumer rights and clarify laws for businesses right across the European Union (EU) but, vitally, also those that trade with it. Your business needs to protect itself by fully adhering to these changes in the law.
The GDPR protects all personal data (such as name, identification number etc) and, interestingly, there is no distinction between private, public or work roles. Despite the Brexit, all the indications are that the UK will toe the line on the rules, to ensure trading with the EU. Organisations outside the EU are also still subject to the jurisdiction of GDPR just by collecting data on EU citizens.
Read full article here: http://www.fsb.org.uk/first-voice/how-to-prepare-for-new-eu-general-data-protection-regulation