Data Protection & Privacy

Cybercrime and IT security are currently top of the list of concerns for most Risk teams.

The Data Protection Act 2018 is the UK’s implementation of the General Data Protection Regulation (GDPR).

All our partners have qualifications in Data Protection.  We provide specialist face to face training on Data Protection for professional firms.

We are able to advise you on issues such as these:

  • What do we need to do to prepare for the GDPR?
  • Someone has sent us what looks like a Subject Access Request. What do we have to send her and when?
  • What rights do our clients and staff have, in relation to their data? How long can we keep it?  What can we use it for?
  • Are law firm client files regarded as data?
  • What do we need to tell our clients before we collect their data? What should we put in our Terms of Business?
  • What steps must we take to safeguard the data we hold?
  • The senior partner has lost his laptop. Do we need to tell the Information Commissioner’s Office (ICO)?
  • Can we send marketing messages or make sales calls? Can we use cookies?
  • What steps do we need to take to prepare for the forthcoming EU General Data Protection Regulation?
  • Can we send data abroad? Can we store it in the Cloud?
  • Can we install CCTV on our premises?
  • What steps must we take to control a company that processes data on our behalf, e.g. payroll company, or confidential waste management agent?
  • Do we need to register with the ICO?

Key Contact

Frank Maher

For specialist legal advice on Data Protection & Privacy please contact Frank.

0345 330 6791