GDPR is now in force
Ensure you make a start
Independent Veterinary Practices
The General Data Protection Regulation (GDPR) is now in force and impacts all veterinary practices regardless of their size.
This new legislation requires all businesses in the UK to ensure that they process the personal data of their clients, employees and suppliers in a legal and secure way.
At Connected Vet we have identified Three Routes to Compliance to help our clients minimise their risk of non-compliance.
What data do you hold?
You will need to document the personal data your practice holds, how it is obtained, how you process it and who you share it with.
Can you legally process it?
You will need to review the legal bases under GDPR and decide which your practice will use for each processing activity.
Have you minimised risk?
You will need to identify the gaps in your data protection and information security, taking action to mitigate these shortcomings.
Is your documentation compliant?
You will need to ensure that the notices, policies and procedures you have in place are compliant and provide transparency to data subjects.
Frequently asked questions
As a small business are we exempt from the GDPR?
No. All veterinary practices process personal data (clients, employee and suppliers) and you will have to comply with the GDPR regardless of your practice size.
Do we always need consent?
Not always. Consent can be difficult for a practice to administer and there are other legal bases that may be more appropriate and effective for your business.
If we do nothing, can we still send treatment reminders?
Unlikely. Most practices do not have valid consent in place or are not clear on the legal basis and processes they should use for these marketing communications.