Data protection law can be complicated. It is sensible to choose a specialist to advise you. We offer advice and legal services in relation to your legal obligations under data protection legislation such as:
How to lawfully collect, use, share and retain/ destroy ordinary and ‘special category’ personal data.
What and how to tell individuals under the GDPR e.g. purpose of processing, legal basis, who you share with etc.
What the rights are e.g. subject access (SAR’s) and exemptions, erasure, objection and when and how to respond
How to market to individuals lawfully under the GDPR and the privacy (‘PECR’) regulations
Cookies and other tracking technologies
What is required in a Notice and the need for consent
CCTV / facial recognition
Legal ground to use, procedures and privacy impact assessments
Due diligence in respect of suppliers who process data for you e.g. I.T support, payroll or cloud services. Ensuring the necessary GDPR compliant contracts are in place
Policy and procedure drafting
Assessing risk of harm to individuals after a personal data breach and liaison with the ICO and affected individuals on your behalf. Advice on liability.
Advice as to how to lawfully export personal data outside the EEA and into the UK
For more information on any of the above, please contact us.