The General Data Protection Regulation (GDPR), effective from 25th May 2018, is a hot topic amongst businesses at present, and this FAQ offers key points about if and how it is likely to affect artists.

Most of the concepts and principles of GDPR remain the same as those in the UK’s current Data Protection Act of 1998, so if UK businesses (including self-employed artists) are complying with the current law then they will comply with the requirements of GDPR.

What has been changed by GDPR?
New elements and enhancements will be introduced. These will not affect self-employed artists, but will affect businesses that have:

• A presence in an EU country.
• No presence in the EU, but it processes personal data of European residents.
• More than 250 employees.
• Fewer than 250 employees but its data-processing impacts the rights and freedoms of data subjects, is not occasional, or includes certain types of sensitive personal data.

FAQs on our website that remain relevant despite the changes include:

• What if I want to include information about other people in my artwork?
• How can I get my gallery to disclose the names of my buyers?

You may choose to ensure that as an individual you follow the legalities of GDPR for best practice. Articles elsewhere that would help you do so include GDPR and email marketing with mailchimp and GDPR and your website explained.

To find out more about GDPR and how it will protect you against the abuse of your personal data, see The EU General Data Protection Regulation (GDPR) site.