Data Protection Law

Our solicitors provide expert legal assistance surrounding data protection.

DPP GDPR’s data protection lawyers can help you comply with the requirements of GDPR and the Data Protection Act. We can also advise you on how to avoid data breaches. Contact us today on 0333 200 5859.

The Data Protection Act is a piece of legislation that the UK Parliament passed in 1998. It exists to ensure that organisations handle private data with due care – and that they put proper processes in place to prevent data breaches.

In 2018, the EU also passed the General Data Protection Regulation (GDPR) – meaning Data Protection is now more regulated than ever.

The term “data” or “personal data” refers to information that may be used to identify its subject – either on its own or alongside other information.

The Data Protection Act 1998 is regulated by the ICO (Information Commissioner’s Office)

It is vital that your company adheres to the requirements of the Data Protection Act and GDPR. Failing to do so may result in possible fines of up to €20 million or 4% of your annual turnover.

Should your company experience a data breach, the subjects of that data may also be able to take legal action to claim compensation.

Contact DPP GDPR for legal assistance surrounding data protection on 0333 200 5859.

How our data protection lawyers can help you

Our team of experienced data protection solicitors can work alongside you to help you adhere to the Data Protection Act 1998.

Our services include:

  • Providing clear legal advice on all aspects of data protection. This may include help with drawing up contracts, seeking consent for data sharing by way of privacy notices or a variety of other steps
  • Helping you develop means to respond in a timely manner to any suspected data protection breaches
  • Defending you against allegations of data breaches or failure to adhere to regulations
  • Assisting in your day to day approaches to data protection compliance
  • Offering advice on the monitoring of your workforce, customers, clients or contractors, including the use of CCTV
  • Helping you to handle access requests from data subjects
  • Guiding you through the proper process for international transfers

Alongside this, our solicitors can provide advice about:

  • Contract law
  • Technology law
  • Intellectual property law
  • Commercial law
  • Corporate law

Data protection act offences

You may be breaking data protection law if you:

  • Obtain or access personal data unlawfully or without permission
  • Refuse to adhere to subject access requests or supply false information in response
  • Destroy vital information relating to data
  • Obstruct the Information Commissioner during an inspection or fail to give access to anyone with an official warrant
  • Alter personal data, or re-identify data that has been de-identified

When should you seek data protection legal advice?

You should make contact with legal specialists if you:

  • Wish to know what more you can do to keep your clients’ and employees’ data secure
  • Have become concerned that your procedures do not correctly adhere to data protection regulations or GDPR
  • Think that someone may accuse you of failing to comply with the Data Protection Act 1988
  • Become aware of a data breach affecting – or caused by – your company
  • Intend to draw up a new contract with a focus on data protection
  • Require a Data Protection Act impact assessment

Frequently asked questions

When should a data protection impact assessment be conducted?

By undertaking a DPIA, you can identify weaknesses in your company’s processes relating to data protection. Some situations in which you’ll need to conduct a DPIA include:

  • Any project that involves the processing of personal data – especially on a large scale
  • The processing of any “high-risk” data. This may include information about:
    – innovative technology
    – biometric or genetic details
    – tracking information or
    – information that carries a risk of physical harm should it be made public

What are your obligations under the current Data Protection Act 2018 and the GDPR?

As a business, you are required to appoint a data protection officer or data controller. This person must ensure you comply with GDPR.

You cannot store client, employee or contractor data without their explicit permission. You should be able to prove that they gave that permission.

If you store data about a person who subsequently asks for access to that data, you are legally obliged to comply.

You are required by law to destroy all data you are not using as soon as you stop using it. You must only use data in the way you originally said it would be used.

It’s extremely important that you keep track of what happens to all the data you collect. All businesses must put processes in place to keep data secure. They also must inform the ICO and any other relevant parties within 72 hours if there is a breach.

When do companies need a data protection officer?

All companies that handle data from EU citizens require a data protection officer. The official deadline for GDPR compliance has passed. Headline: Data Protection Law

DPP GDPR’s data protection lawyers can help you comply with the requirements of GDPR and the Data Protection Act. We can also advise you on how to avoid data breaches. Contact us today on 0333 200 5859.

Call now 0333 200 5859