Data protection & privacy
A business’s ability to use and manipulate the information that it holds is increasingly associated with its profitability and long term success.
A business’s ability to use and manipulate the information that it holds is increasingly associated with its profitability and long-term success.
Although undeniably a valuable business asset, failure to understand the extent to which that information can be harnessed may result in serious reputational damage, severe financial penalties and even criminal liability.
Keeping pace with the increasingly regulated data protection landscape, and minimising the risk of serious data breaches, are challenges faced by every modern organisation. At Greenwoods GRM, we have the expertise to help you navigate your way through the complex regulatory environment and provide practical solutions in all aspects of information and privacy law.
May 2018 – new EU data protection regulation:
The European Union’s General Data Protection Regulation (GDPR) will apply in the UK from 25th May 2018, replacing the existing data protection legislation (Data Protection Act 1998). The GDPR is significant as its rules will dramatically impact businesses’ approach to data privacy compliance, while its territorial scope means that its influence will be felt beyond the EU and the European Economic Area.
The government has confirmed that the UK’s decision to the leave the European Union will not affect the commencement of GDPR and it has committed to maintaining the highest data protection standards moving forwards.
How we can help:
Although many of the principles underpinning the GDPR will be familiar to most organisations, compliance may represent a real challenge – given the need to put data protection at front and centre when undertaking new ventures and dealing with existing customers and clients. Greenwoods GRM can help with all aspects of data protection compliance, including:
- Expertise mapping how GDPR will affect your business
- Building compliance programs and policies
- Responding to data subject access requests and your duties when individuals assert their other statutory rights
- Advising when data privacy and data regimes conflict with more traditional and often conflicting duties such as under intellectual property law, privilege and confidentiality
- International transfers of data (including standard contractual clauses, adequacy and binding corporate rules)
- Employment compliance, including employee monitoring
- Managing relations with supervisory authorities and in particular the Information Commissioner’s Office
- Data security and responding to data breaches.
Get in touch with us