A chance to hear the latest on employment, property, corporate and restructuring and insolvency and to ask questions and share your opinions.
DATE: Thursday 7 May 2020, 10:00am - 11:00am- delivered via Zoom Video Conference
Search site
Contact our office
Make an enquiry
Data Protection law is relevant to every business. It should not be ignored under the current rules, but under the General Data Protection Regulations (GDPR), which come into force in May next year, businesses will be required to take another look at what data they hold, how they keep it secure and what they are permitted to do with that data.
GDPR will largely be welcomed by the consumer as they will, effectively, hand back control over 'data' to the people who own the personal information. Businesses should also see this as an opportunity to review their systems and processes and mitigate the risk that they could be subject to a damaging cyber-attack or personal data leak.
There is work to be done and businesses that process information relating to an identifiable person, i.e. a human being, must ensure that they comply with the new laws before they're in force in less than a year's time. Unless you and your business have been burying your head in the sand when it comes to personal data, it is likely that you will already have implemented compliant guidelines, polices and procedures for data protection. The emphasis is on thinking carefully about what you do currently and assessing what, if anything, you need to do to meet the new requirements.
We have provided a brief checklist of some of the main things you should be considering:
1. Review Privacy Policies - in addition to the information you're currently required to provide to individuals, you will also have to give explanations including the legal basis for processing their information and how long you intend to hold it for. This must be in a clear and easy to understand language, which, if your target market includes children must be given careful consideration.
2. Consent - check how you seek, obtain and record an individual's consent to use their data. Under the new rules consent must be freely given, informed, specific, unambiguous and clearly distinguishable. Separate consents must be obtained for distinct processing operations and not bundled in with other agreements, such as by way of a catch all tick box. Consents must be a positive indication of agreement, meaning that inactivity, pre-ticked boxes and inference by silence will not suffice. Consent must also be verifiable so you need to be able to demonstrate that you have recorded the distinct consents you have obtained from each individual. You must also make it just as easy for individuals to withdraw their consent as it is to give it in the first place.
3. Check your existing procedures -
a. How easy is it to correct information if it is inaccurate? You may want to consider a system where individuals may have access to your database to amend their own details.
b. Can data be deleted swiftly? Under the new rules individuals have a right to erasure, which is far more limiting than the current right to be forgotten.
c. How do you record data? Individuals have a right to ask for any information you hold on them to be sent to them in a format preferable to them. This may be by email, which could create time consuming administration efforts if you currently record data in paper format;
d. Deadlines for these information requests will be reduced and will have to be met within 1 month of the request rather than the current 40 days. Also you will no longer be able to charge administration fees.
These changes may sound daunting for businesses, certainly those that process large volumes of data, however, to pinch a phrase from the immortal genius Lance Corporal Jones: "don't panic!" there is still time to get your procedures compliant. Jon Rathbone in the corporate and commercial team at Hughes Paddison can help you with these matters. If you'd like to discuss GDPR and better understand your obligations give us a call on 01242 574244.
A chance to hear the latest on employment, property, corporate and restructuring and insolvency and to ask questions and share your opinions.
DATE: Thursday 7 May 2020, 10:00am - 11:00am- delivered via Zoom Video Conference
Cheltenham based solicitors, Hughes Paddison, have announced two promotions within their Senior Management Team. Jon Rathbone has been made an Equity Director within the firm, whilst Julie Bennett has been made a Director.
What our clients say
“Hughes Paddison have provided assistance on numerous occasions consistently acting in an exemplary fashion whilst dealing with all aspects of the issue at hand. It is extremely reassuring to know that our company is represented by such a competent and professional firm.”– Commercial Director, Ferroli Limited
“We are lucky to have the services of Paul Engelbrecht on hand. He has always met our requests and ridiculous deadlines and puts himself out to make life easier for us”– Company Secretary - Supergroup PLC
“Paul has repeatedly demonstrated a high level of legal skill, accuracy, attentiveness and most of all, commercial acumen. I particularly appreciate his eye for detail and ability to take complex legal issues and explain them in lay terms. ”– Relationship Director RBS
“Whilst constantly demonstrating his consummate professionalism and occasional wry sense of humour David has at all times supported me and acted in my best interests resulting in a successful financial settlement and my divorce.”– V
“Jennifer provided sound professional legal advice which I needed to help me to sort out the legal and financial aspects of a difficult personal situation. I wouldn't hesitate to go to her with any family legal matters I have in future.”– R
“Having the support of Marcus throughout what has been a very painful divorce has really helped me get through the last 18 months. Although this has personally been a very difficult process, I know that Marcus has done everything possible to make it as smooth as it can be. I really appreciate the honest, open feedback to all of my questions and also how quickly he responded to them. Above all else, Marcus really does seem to care about his clients and their families. I never had the feeling that this was just a job for Marcus, and Im so grateful that I was fortunate enough to have had Marcus recommended to me when I did.”– R
Clicking the Accept All button means you are accepting analytics and third-party cookies (check the full list). We use cookies to optimise site functionality and give you the best possible experience. To control which cookies are set, click Settings.
Our use of cookies.
You can learn more detailed information in our Privacy Policy
Some cookies are essential, whilst others help us improve your experience by providing insights into how the site is being used. The technology to maintain this privacy management relies on cookie identifiers. Removing or resetting your browser cookies will reset these preferences.
Essential Cookies
These cookies enable core website functionality, and can only be disabled by changing your browser preferences.
Google Analytics cookies help us to understand your experience of the website and do not store any personal data. Click here for a full list of Google Analytics cookies used on this site.
Third-Party cookies are set by our partners and help us to improve your experience of the website. Click here for a full list of third-party plugins used on this site.
Comments