The General Data Protection Regulation (GDPR) and UK Data Protection Act 2018 came into full effect on 25 May 2018. We have developed a suite of support materials and resources to help your organisation understand and comply with the new data protection framework.

GDPR in Brief Series

Exclusive to MRS Members and Accredited Company Partners, our data privacy experts have produced the GDPR in Brief Series for interpreting the regulation in the context of the insight sector.

The series includes:

  • GDPR in Brief No.1 – Overview of Data Protection Reform
  • GDPR In Brief No.2 – Compliance Checklist
  • GDPR In Brief No.3 - Data Processors
  • GDPR In Brief No.4 - Data Protection Officer
  • GDPR In Brief No.5 - Informed Consent
  • GDPR In Brief No.6 - Informed Consent Checklist 
  • GDPR In Brief No.7 - Transparent Privacy Information Notices

You can access the GDPR in Brief Series here:

For Individual Membership access click here.
For Company Partner access click here.

GDPR General Guidance

MRS has produced a new Guidance Note on Data Protection and Research, to help with your compliance with the new data protection framework introduced by the GDPR and the UK Data Protection Act 2018.

DOWNLOAD Data Protection & Research: Guidance for MRS Members and Company Partners 2018



Select your desired chapter from the list below to download a specific topic


This section sets out the purpose and structure of this MRS Guidance on Data Protection and Research 2018 and defines key terms in the GDPR.

This section provides an overview of the relationship between the GDPR and the UK Data Protection Act 2018 and explains significant changes in key data protection concepts for research activities

Data Protection Principles and Concepts
This section discusses the data protection principles and key new concepts of accountability, data protection by design and default and pseudonymisation. It explains how these principles should be embedded through the research cycle.

Data Processing Grounds
This section discusses the legal processing grounds that are appropriate for use in research projects. The grounds discussed are consent of the data subject, the legitimate interests of the data controllers and contractual necessity. Illustrative examples are provided for all the legal grounds discussed.

Public Interest Research
This section discusses research by or for public bodies and the research regime that is applicable to scientific research under the UK DPA 2018.

Frequently asked questions on the GDPR is available here:  

An earlier 2017 note on the GDPR, interpreting the legal grounds for processing personal data for research purposes is available here: GDPR Guidance Note: Legal grounds for using personal data for research purposes (PDF)

Training and webinars

As well as the GDPR In Brief guides, MRS also has a range of events and training to help support you and your team with compliance.

GDPR Standards WebinarOn the Starting Blocks, GDPR Q&A with MRS Standards Team
Developed in the lead up to the initial implementation of GDPR, our standards team answer your concerns and highlight the key changes to the data protection landscape. 
Exclusively for MRS Individual members. Watch the webinar here

Outsourced data protection officer service

GDPR allows you to fill the role of a data protection officer (DPO) using an external service provider. Accredited corporate members of MRS can access a tailored DPO service in the company partner area of this website.  

Fair Data trust mark

Don’t forget MRS also offers Fair Data - an accreditation trust mark that allows companies to showcase best practice in data protection. It can help guide you towards GDPR compliance. Plus there are useful resources on the GDPR including:

See the Fair Data compliance timeline
Read Fair Data GDPR blogs

Get the latest MRS news

Our newsletters cover the latest MRS events, policy updates and research news.