Compliance with data protection laws, regulations and guidance is an essential part of doing business but it is also a great opportunity to differentiate your company from your competitors by providing reassurance to customers in relation to their personal data and as part of good data security practice.

We have helped our clients conduct initial data audits and prepared comprehensive compliance handbooks to document data flows, use of data and how those clients comply with the requirements of data protection law (including in particular the EU General Data Protection Regulation as implemented in English law by the Data Protection Act 2018).

As well as data audits and compliance documentation, we help our clients with their privacy notices, information disclosure obligations and consent forms.

Much of the data protection support we provide is in the context  of transactions where our clients can be data controllers and/or data processors. Commercial agreements now place greater emphasis on data protection compliance and we help our clients to ensure that the commercial contracts comply with data protection law. Where clients act as data processors, we can advise on which contractual obligations are required by data protection law and which are simply additional requirements of the counterparty.

A number of our clients transfer personal data across jurisdictions and we can help our clients meet regulatory requirements regarding cross-border data transfers.