The General Data Protection Regulation

5 things you need to know about GDPR

You may have seen GDPR hitting the headlines, or perhaps organisations have already contacted you about it? We take a closer look at what GDPR is and what it means for you…

1. It’s the biggest change to UK data privacy law in 20 years

Thanks to technological advances the amount of personal data being generated is rapidly increasing – every time you shop online, use your favourite app or ‘like’ a photo on Facebook you generate data – which is why the law needs updating to better protect people. As part of the General Data Protection Regulation (GDPR) all companies have to review how they manage all personal data – from customer email addresses to employee bank details – and ensure they are GDPR-ready by 25th May 2018.

2. It will give you more control over your personal data

GDPR is all about giving you more control on how your personal data is used. You’ll have greater visibility and control over the personal data organisations hold about you – whether it’s something as simple as your name, or as complex and sensitive as medical information. This means you can have greater confidence that information about you is accurate, up-to-date and properly managed.

3. You can choose who contacts you, and how

Over the coming months you’ll probably notice a lot of organisations asking for your consent so they can contact you about offers, products or services they think you’ll find useful or interesting. To comply with GDPR, these requests need to be really clear and straightforward. You get to choose who contacts you and how, for example by email, social media or phone.

4. You can also change your mind at any time

If you give an organisation permission to contact you, it doesn’t mean you can’t change your mind in the future. Under the new rules, it should be easier to update your preferences on what you want to receive and how.

5. Your data will be better protected

GDPR also aims to make sure that all organisations holding personal data have the right processes in place to protect it. Organisations who put customer data at risk will face hefty penalties.

What happens next? As a Halifax customer, we’ll soon be asking you to choose how you‘d like to receive updates from us on features, products and offers. For example, if you use Online Banking or our mobile app, you'll soon be asked to make your choice. There will also be other opportunities when you speak to us in the coming months to let us know your preferences.


Your personal data is in safe hands with the Halifax

  • We do: use your personal data to help us provide a great customer service, which includes tailoring the information we share with you to help ensure that it’s relevant, useful and timely.
  • We do: respect your privacy and work hard to ensure we meet strict regulatory requirements.
  • We don’t: sell your personal data to third parties.

We’ll always go the extra mile to protect your personal data and as part of this, we regularly review our privacy notice so that you can see how we use your data and what your options are. Take a look at our recently updated Privacy Statement to find out more. Please be aware that further changes relating to GDPR may be made to our Privacy Statement in the future.