Advice on GDPR Compliance
On 25 May 2018, the General Data Protection Regulations GDPR and Data Protection Act 2018 came into force. This was the biggest change in data protection laws in 20 years and marked a significant change to the manner in which businesses collect, manage and use data.
Managing personal data, and the rules surrounding this, has become increasingly complex with the position of ever more advance technology. Data protection laws are constantly evolving with further E-Privacy Regulations due to come into force.
All businesses, regardless of size, turnover or sector, must comply with GDPR and failure to comply with GDPR can result in significant fines which could potentially amount of 4% of a business’s turnover. In addition to fines from the Information Commissioners Office (‘ICO’), businesses face an increasing risk of claims being brought by Data Subject in respect of GDPR breaches which could result in damages and costs.
The rules surrounding Data Protection are complex and there is obligations to continually risk assess practices under GDPR from the perspective of the risk to a data subjects data.
Broadly, GDPR will impact the following aspects of a business:
- Retention and use of client data;
- Retention and use of employee data;
- Contractual obligations with suppliers and third parties;
- Marketing and the use and collection of data for these purposes.
Some of the steps all businesses must take include:
- Drafting a Privacy Notice
- Updating Employee handbooks or policies
- Drafting a Cookies Policy
- Reviewing and updating all supplier, third party and client contracts
How can Ison Harrison help?
Ison Harrison can conduct a full audit of your business and provide a report on GDPR Compliance.
We can also draft applicable policies, privacy notices and contracts as well as provide practical advice as to how operate your business in a complaint manner. The exact services which a business will require will depend on the nature of the business, the type of data handled by a business and the size and resources of the business.
We can tailor our services to suit the needs of the business.