Top menu


What is General Data Protection Regulation (GDPR)?

On May 25th, 2018 the General Data Protection Regulation (GDPR) will come into force and it will replace the current data protection framework under the Directive 95/46/EC. The Regulation expects all organizations, regardless of size, to fully comply with the regulation by the time of its implementation. The GDPR introduces a wide range of mandatory changes that organizations have to make. It is important to start preparing now as non-compliance with the Regulation can have serious consequences.

In the provision of acupuncture services, businesses must align their practices with the GDPR or else risk being in violation of the new data protection rules.

Acupuncturists Must Comply with New GDPR Regulations

While there is an exception for organizations with under 250 employees, it is very hard to justify falling under the exception in practice and the exemption does not apply to acupuncturists as they are ‘Processing of special categories of data’. Acupuncturists processing health data or any other categories of sensitive data should therefore maintain records of processing activities.

GDPR Handbook for ACI Practitioners

The GDPR Handbook for ACI Practitioners is designed to provide an overview of the requirements for acupuncturists and to provide practical steps towards compliance. The ACI has worked with EuroComply and have produced a handbook and step-by-step narrated presentation to help ACI members ensure they comply with new GDPR regulations.

ACI members who register for the GDPR Handbook for Practitioners will be emailed a copy of the handbook and can register to receive the masterclass by logging on to the members’ section of the website. Topics included are:

  • Overview of GDPR
  • Core Principles for Effective Data Protection
  • What Does GDPR Apply To
  • Processing Information
  • Controllers and Processors
  • Risks of Non-Compliance
  • Transfers to Third Parties
  • Available Legal Grounds
  • Example Records and SAR Response Examples
  • Breach Reporting
  • Marketing

Members Downloads

Login To View or Download Content, Login Here


The information contained in these documents is provided by the Acupuncture Council of Ireland (ACI) for the purposes of distributing general information about the General Data Protection Regulation (GDPR) to the members of ACI. The materials are not intended to provide, and do not constitute, legal advice on the implications on our members as a result of the introduction of GDPR and is provided for assistance and information purposes only for the members of ACI. 

ACI is not liable for any loss or damages suffered by any members (or any third party) as a result of reliance on the information provided by ACI on the GDPR and we would recommend that you would seek the appropriate legal or professional advice for any clarification required on GDPR. You should not act or refrain from acting on the basis of any material contained in these publications, without seeking legal or other professional advice.

  • World Health Organization

    WHO is the directing and coordinating authority for health within the United Nations system.

    It is responsible for providing leadership on global health matters, shaping the health research agenda, setting norms and standards, articulating evidence-based policy options, providing technical support to countries and monitoring and assessing health trends.

    In the 21st century, health is a shared responsibility, involving equitable access to essential care and collective defence against transnational threats.

  • Professional Indemnity & Public Liability Insurance Cover
    Members of the ACI are approved by Aviva, VHI, Laya Healthcare and HSA for Out-Patient insurance purposes.