The EU General Data Protection Regulation (GDPR) and the Data Protection Act 2018 (DPA) came into force in the UK on 25 May 2018.
They bring the most significant change in data protection regulation in 20 years. The regulation is designed to align privacy laws across Europe and increase protections and data privacy rights for individual citizens.
Law firms generally face the same issues as other organisations in seeking to comply with the GDPR and, through our ongoing discussions with firms, we’re identifying specific issues of concern around compliance.
This page brings together guidance and support to help you and your firm understand the regulation.
Read our summary guide – GDPR for solicitors
Read our detailed guidance – GDPR and DPA guidance for solicitors in law firms
Download our guide – The General Data Protection Regulation: A guide for solicitors (PDF 435 KB)
Data protection impact assessments (DPIAs) are a new, but in some ways familiar, feature in the data protection landscape.
GDPR has sparked questions about whether solicitors are generally data controllers or data processors.
Peter Wright explains ten key actions your firm should already be taking to actively demonstrate your compliance.
How can you protect your firm from a data breach? We ask Peter Wright, managing director of DigitalLawUK, about the latest trends in cyber and IT security risk in a post-GDPR world.
Neil Ford of IT Governance outlines 10 aspects of the GDPR that your review must cover.
What law firms can do to protect themselves.
Nick Denys, policy advisor at the Law Society, explores some of the challenges organisations face to remain GDPR compliant.
Sarah Richardson, who supports the Law Society’s children law sub-committee, discusses how the EU GDPR affects the data protection rights of children.
Andrew McWhir, policy advisor at the Law Society, discusses the Law Society’s GDPR guide for law firms.
Learn in this one hour webinar more about data transfer, adequacy decisions, EU/US Privacy Shield
Please contact us if you or your firm have a specific issue you would like to raise.