Data Protection Compliance, Information Security & Legal Services
Our ServicesDPA/OK helps organisations to comply with data protection law and keep their information safe.
If you handle people’s personal data then you are obliged to comply with the General Data Protection Regulation (‘GDPR’) 2016/679 and the Data Protection Act 2018. Other laws exist such as the Privacy And Electronic Communication Regulations (‘PECR’) of 2003 that are concerned with the use of ‘Cookies’ in websites and electronic marketing to individuals. DPA/OK can help you comply with the above.
In addition organisations should take steps to keep their information safe. This requires identification of what information an organisation handles and its sensitivity/ criticality to the organisation. There also needs to be an assessment of potential threats to that information, identification of any vulnerabilities within the organisation as well as the chances of something untoward happening and the likely consequences. We can help you with this and the identification of any needed measures to reduce or do away with risk.
DPA/OK is based near Wolverhampton but serves businesses throughout the West Midlands, Staffordshire, Shropshire, Warwickshire and Worcestershire.
Click on the links above or below to find out more about us, the services we offer and how we can help you.
Please contact us to arrange a free no obligation telephone discussion.
Compliance
Information Security
Data Protection Officer
Legal Services
Gap Analysis
Training
Please contact us to arrange a free no obligation telephone discussion.
Frequently Asked Questions
What Is Personal Data?
Any information that relates to an identified or identifiable individual. It can be ordinary or ‘special category’ such as that about race, ethnicity, health etc.
What Level Of Support Do You Offer?
As little (from a discussion over the phone) or as much (to on- site support) as you need. This can either be a one- off or an ongoing retainer.
What Is The GDPR?
It is an Europe wide law that tells ‘data controllers’ (organisations that determine what is done with personal data and how it is handled) how they should treat the personal data of individuals. Failures to abide by the GDPR can lead (at worst) to fines and claims for compensation by individuals.
Do I Legally Need A Data Protection Officer?
In certain situations yes. These are where you are a) a public authority, b) you process (as a core activity) lots of ‘special category’ personal data or that about criminal convictions and offences or c) again as a core activity you are involved in large scale monitoring of individuals. Even if you are not legally required to have a DPO it is good practice to appoint someone to be responsible for ‘informing and advising’ top management of the organisations legal obligations and monitoring organisational compliance.
What Sort Of Training Do You Provide?
Organisations are required to demonstrate that they comply with the GDPR. If employees process personal data then they need to know what they should or should not be doing when handling personal data. Employees are also often the weak link when it comes to information security so again they need to know what to watch out for. Training can cover both of these areas.
Why Might I Need A Specialist Data Protection Lawyer?
Data protection is, like many areas of law, a speciality and by choosing a specialist you are more likely to get the right advice. Please see our legal services page for further information as to our offering.