Compliance as a competitive advantage.
As technology has advanced in recent years data, and specifically personal data, has become a central component of the vast majority of businesses. At the same time, a more strictly regulated legal framework has developed around privacy and data protection. Regardless of size or location, businesses must ensure they are collecting, storing and using individuals’ personal data lawfully. Whilst it may seem onerous, good data privacy practice is and will continue to be crucial for your business from both a regulatory and reputational perspective, and strong compliance can give you a competitive advantage.
If you are uncertain of your current compliance position or think there may be areas still to be addressed and improved, you need advisers who can devise a practical and effective compliance strategy for your business now and moving forward.
Our Data Protection team supports SMEs across a wide range of industries in ensuring compliance with data protection legislation, including the GDPR and Data Protection Act 2018. We offer a range of services, including:
- An assessment of your business to evaluate your current policies and procedures and identify any failures in compliance;
- Helping you to create and implement a pragmatic compliance programme, tailored specifically to your business and aligned with your commercial objectives;
- If a data breach does occur, or if you receive subject access requests, our DSAR and breach response support will assist you to deal with the incident swiftly and efficiently, ensuring the least possible disruption to your business and your clients; and
- Providing training for staff and/or management to ensure that data protection issues and potential issues can be recognised and dealt with before they become major challenges to your business.
See below for a wide range of downloadable tools to support your GDPR compliance.
Preparing for Brexit
Preparing for Brexit
The end of the Brexit transition period: What this means for your business's data protection obligations
Major changes to personal data flows between the UK and the countries of the European Economic Area (EEA) come into effect from 11pm British time on 31 December, when the UK will be a ‘third country’. So what should your business consider and implement now in order to minimise potential disruption to data flows in 2021?
Personal data transfers across borders
Exporters of personal data from the EEA to third countries will need to consider whether the importing country’s data protection standards are ‘essentially equivalent’ to those in the EU and if not, add further technical or contractual protections. The General Data Protection Regulation (GDPR) restricts transfers of personal data from the EEA to third countries unless…
Tips on maintaining the security of personal data while working from home
With offices mainly moving to remote working, it is important that employees are keeping vigilant to ensure the personal data being dealt with is kept secret and confidential and used for the proper purpose. Read our six tips to help manage the data protection risks whilst working outside the office.