All businesses collect and hold vast quantities of data about their customers and employees. That data is an important asset with many businesses relying on it to continue operating and can be a crucial aspect of valuing a business.
Data protection law aims to strike a balance between the rights of individuals to privacy and the ability of organisations to use information about those people for the purpose of their business.
In practice, this means that it is essential that all businesses have in place robust arrangements (both in terms of internal policies and procedures as well as contracts with its suppliers) to avoid data being lost, stolen, misused, damaged or destroyed prematurely. Any such incident could result in severe damage to the reputation of a business and a loss of confidence in it by its customers, employees and shareholders, as well as claims for compensation.
We can help by:
- Advising on how to deal with data subject access requests
- Advising on data protection projects
- Assisting with Privacy Impact Assessments
- Conducting data protection audits
- Dealing with data breaches
- Drafting privacy notices, data processor agreements and data sharing protocols
- Ensuring staff are properly and appropriately trained
- Drafting and reviewing commercial contracts in relation (whether solely or partly) to processing of data.