With the coming into force of GDPR in 2018 and the value that can be attributed to the personal data collected by a business, data protection is a key issue for all businesses. Employers, service suppliers, contracting parties, and other holders of personal data, need to be extremely careful and be able to show they have appropriate systems and protections in place.
We can advise you in relation to your compliance needs including assistance with data protection audits through to drafting appropriate policies and notices for use throughout your business. We can advise on the requirements for and the form of consent required for processing personal data. In addition to internal compliance issues, we will advise on the data protection aspects of any commercial agreement that you propose to enter into and will ensure that data processing agreements are in place in relation to all relevant outsourced services.
If something goes wrong and a data breach occurs, we have the necessary experience to advise in connection with the notification of a breach to the Information Commissioner’s Office.
With fines of up to €20 million or 4% of annual global turnover (whichever is the greater) for the most serious breaches and the requirement for organisations to be accountable for compliance, data protection is a business concern that must be taken seriously. Businesses should not relax once the required policies have been drafted. It is important to keep data protection at the forefront of business planning so that whenever new agreements are entered into or new systems purchased, the impact on data protection is taken into account.
Talk to Tollers
Both our commercial and employment teams actively advise clients on the implementation of GDPR and in addition to drafting documentation we can provide bespoke and focussed training to your business and your employees in relation to this complex area of law.