Data protection law is changing on 25 May 2018 and organisations need to be ready for the General Data Protection Regulation (GDPR). The ICO has produced a package of tools and resources to help you get ready.

Guide to the General Data Protection Regulation 

The Guide to the General Data Protection Regulation (GDPR) explains the provisions of the GDPR to help organisations comply with its requirements. It is for those who have day-to-day responsibility for data protection.

Getting ready for the GDPR self assessment checklist

We have created self assessment checklists for both data controllers and data processors. Use our checklists to assess your high level compliance with data protection legistlations and find out what more you need to do to make sure you are keeping people’s personal data secure.


We have produced an FAQs document answering the questions that have been asked most often in relation to the GDPR. These documents have been created for the following sectors:

Advice service for small organisations

We have a dedicated advice line offering help to small organisations preparing for the new data protection law. 

GDPR for the boardroom

Information Commissioner, Elizabeth Denham talks about how GDPR is an issue for the boardroom.

 12 steps to take now 

We have also produced a downloadable graphic that lists 12 steps to take now to prepare for the GDPR.