Fleets are to be advised on how new data protection rules will affect the way they check drivers’ details.

The Association For Driving Licence Verification (ADLV) says it will be working closely with the DVLA on the implementation of the new General Data Protection Regulation (GDPR) regarding its Access to Driver Data (ADD) service.

The ADLV says it hopes to define the industry standard by helping to explain the GDPR rules to its members’ fleet customers.

The ADLV will support members with an advisory document for fleet managers, which will include topics such as:

. the content of privacy notices on how the data will be used and how long information can be held

. required audit trails and what happens to the data afterwards

. the right to be forgotten

. potential changes in the mandate and the associated terms and processes

. required training issues.

Terry Hiles, ADLV director and commercial director of Licence Check Ltd, said: “GDPR is going to present a challenge to a worryingly large number of businesses, which have hitherto assumed that sitting beside the driver to look at their licence details using the DVLA’s service for individuals is sufficient evidence of consent.

“As an association, speaking to businesses of all sizes in the UK, we find that our members encounter this on a daily basis. The reality is though that this service is for the individual driver’s use only.”

Kevin Curtis, ADLV director and managing director of Driving Monitor, said: “GDPR is the biggest data challenge on the horizon for fleet managers. However, the ADLV will be advising our members on how to prepare fully for the changes ahead.

“We are delighted to be working with the DVLA as a new contract is being prepared for ADD users.

“ADLV aims to publish a membership advisory document early in 2018 and will be available to answer queries for members online.”

Donna Jones, senior commercial data sharing manager for the DVLA, said: “We welcome the advice that is to be given to ADLV members.

“The DVLA has been undertaking a detailed review of all its contracts in relation to GDPR, including the ADD contract, which we expect to rollout in March, in readiness for the new legislation being implemented from 25 May.”