Data Privacy and Cyber Security

How our data privacy team can help:

• Compliance programmes – fixed or capped fee based delivery of required documentation and a helpdesk facility (optional). If you have concerns about the present state of compliance we can make a start with a fixed price audit of current documentation and procedures
• Data Privacy Policies – for larger employers having a comprehensive policy statement is crucially important evidence under the accountability principle – ensuring that not just the business but also your people fully appreciate their responsibilities.
• Data Subject Access Requests (“DSARs”)  – individuals have become more aware of their data rights since May 2018, and there has been a substantial increase in the number of DSARs that businesses have received since then. These DSARs not only present a compliance challenge but may also be the first sign of potential litigation against the business.  We provide a suite of DSAR support services to support clients, from initial triaging advice to full document review support using DSAR-trained lawyers and our IT review platform. As Freeths is a full-service law firm, we often work as part of a multi-disciplinary team.
• Data processing and sharing agreements – compliant with the requirements under UK GDPR including ICO guidance
• International data transfers and third country due diligence – we can help you in addressing the complexities of securing compliant international transfers to a background of increasing due diligence requirements.
• Managing major data breaches – a notable feature of our practice is our ability to respond rapidly to situations that arise, providing immediate attention and helping the client to develop the right strategies for any scenario encountered.

Where we have helped previously:

“We have advised a client on its processing of biometric data as part of the roll-out of a project that was one of the first of a new product. We advised the client on how to render its processing of biometric data compliant with UK GDPR and supported the client on the preparation of its Data Protection Impact Assessment for this project.”

“We advised a client in the education sector on its responses to DSAR and Freedom of Information requests in relation to an employment dispute with a former Head Teacher. We advised the client on its searching and reviewing of key documents, and collaborated with colleagues from our Employment Team to support the client on the strategic aspects of this sensitive and contentious matter.”

“An education software provider received an request from the Information Commissioner’s Office requiring responses to a series of questions relating to a key product sold to schools. The request was focussed on the use of artificial intelligence based decision-making within the product and required responses to questions touching on the processes that the client had in place that underpinned compliance of the product with GDPR. Freeths supported the client in responding and helped the client secure a clearance from ICO confirming that ICO had no observations or concerns relating to the processing of personal data through the product.”