The General Data Protection Regulations (GDPR) come into force on 25 May 2018 in the biggest single review of data protection legislation since the introduction of the Data Protection Act in 1998.
In the haze of hysteria around the introduction of this new legislation it is important for private landlords to remember that they, too, are obliged to comply with the requirements that are being brought in.
Whilst the basis upon which landlords collect the personal data of their tenants is clearly contractual, landlords will need to ensure that they are clear with their tenants about what data is being collected, why it is being collected and what will be done with it.
If the personal data of a tenant is being passed to a third party – for a reference or credit check for example – landlords will need to spell that out to tenants.
Private landlords should also ensure that the methods they use to store the data are secure and that they do not keep data for longer than they need to.
Where a landlord holds a tenant’s existing consent to disclose information they should ensure that this is regularly refreshed and that they respect the tenant’s right to withdraw their consent at any time.
Finally, if data that is held is incorrect – or changes – a landlord must act quickly once notified by their tenant to ensure than any amendments that are required are implemented.
If you require further information call our Specialist Team on 0800 088 6004.