Sign-in Help

GDPR compliance

View Practice Compliance by content type:

Practice notes
Precedents
Q&As
News

Latest Practice Compliance News

A dose of reality? Requiring employees to be vaccinated

A dose of reality? Requiring employees to be vaccinated

The following Employment news provides comprehensive and up to date legal information on A dose of reality? Requiring employees to be vaccinated

Practice Compliance weekly highlights—21 January 2021

Practice Compliance weekly highlights—21 January 2021

The following Practice Compliance news provides comprehensive and up to date legal information on Practice Compliance weekly highlights—21 January 2021

Law must change to go after companies allowing financial crime, MPs urge

Law must change to go after companies allowing financial crime, MPs urge

The following Corporate Crime news provides comprehensive and up to date legal information on Law must change to go after companies allowing financial crime, MPs urge

BEIS ‘Working safely during coronavirus’: two new workplace guides and three guides updated

BEIS ‘Working safely during coronavirus’: two new workplace guides and three guides updated

The following Employment news provides comprehensive and up to date legal information on BEIS ‘Working safely during coronavirus’: two new workplace guides and three guides updated

Featured Practice Compliance content

Facilitation payments under the Bribery Act 2010

Facilitation payments under the Bribery Act 2010

Facilitating the performance of a duty by public officialsFacilitation payments, also known as facilitating or grease payments, are generally small...

What is a solicitor's undertaking?

What is a solicitor's undertaking?

An undertaking is a commitment by a solicitor to do something. It can be enforced against the solicitor by the courts. Failure to comply with an...

Active bribery, passive bribery and bribing foreign public officials

Active bribery, passive bribery and bribing foreign public officials

The purpose of this Practice Note is to provide a general understanding of the offences under section 1, 2 and 6 of the Bribery Act 2010 (BA 2010). It...

High-risk third countries tracker

High-risk third countries tracker

This Practice Note lists high-risk third countries identified by the Financial Action Task Force (FATF), HM Treasury and the European Commission as...

Precedents

Modern slavery: contract clauses

1DefinitionsModern Slavery Policy•means the Customer's anti-slavery and human trafficking policy as set out in Schedule [insert] as updated by the...
Read More >
9th Nov
tag iconIn-house
Practice notes

AML and counter-terrorist financing—source of funds

Source of funds and wealth was a key focus of the SRA’s Preventing Money Laundering and Financing of Terrorism thematic review, published in March...
Read More >
9th Nov
tag iconIn-house
Practice notes

Introduction to retained EU law

This Practice Note provides an introduction to retained EU law, which is an entirely new legal concept introduced to UK domestic law in preparation...
Read More >
9th Nov
tag iconBrexit
Precedents

Standard contractual clauses—set II—controller to controller (Model Clauses)

DRAFTING FOR BREXIT: For the latest information on the impact of Brexit on the drafting, negotiation and enforceability of this Precedent, see...
Read More >
9th Nov
Precedents

Anti-bribery and corruption for law firms—post-training assessment questions

How to use this testThese questions are designed to test your understanding after your attendance at our training on avoiding bribery and...
Read More >
9th Nov
Practice notes

Compliance officer for legal practice—COLP—title and duties 2011 [Archived]

The compliance officer for legal practice (COLP) sits at the heart of the firm's regulatory arrangements. This does not mean that the firm and its...
Read More >
9th Nov

Most recent GDPR compliance content

Practice notes

Supply chains under data protection law—arrangements between controllers and processors

This Practice Note primarily addresses the UK data protection laws where a processor will process personal data on behalf of a controller in a...
Read More >
21st Jan
Practice notes

Personal data sharing between controllers

This Practice Note explores issues and best practice relating to the sharing of personal data between controllers (including joint controllers and...
Read More >
21st Jan
Precedents

Response to data subject request—right of access—seeking clarification

[Name of individual making request][Address of individual making request][Date of this response]Dear [insert name of individual making request]I am...
Read More >
21st Jan
Precedents

Data protection impact assessment—consultation feedback form

Introduction[Provide a brief introduction of the project to which the consultation relates, to include as required:][—a brief introduction to your...
Read More >
21st Jan
Precedents

Data protection impact assessment—DPIA—surveillance cameras

1Project summaryProject name[Insert name]Project owner[Insert name(s)]Project summary[Summarise the project, eg new CCTV system for a car...
Read More >
21st Jan
Precedents

Data protection impact assessment—DPIA—short form

1Identify the need for a DPIAExplain broadly what project aims to achieve and what type of processing it involves[Insert, eg you may find it helpful...
Read More >
21st Jan
Precedents

Data protection impact assessment—DPIA—report

1Project overview[Insert an overview of the project, explaining why it necessary and how it will impact on privacy. Subject to commercial sensitivity,...
Read More >
21st Jan
Precedents

Response to data subject request—right to object—unable to comply with request

[Name of individual making request][Address of individual making request][Date of this response]Dear [insert name of individual making request]I am...
Read More >
21st Jan
Precedents

Response to data subject request—right to object—able to comply with request

[Name of individual making request][Address of individual making request][Date of this response]Dear [insert name of individual making request]I am...
Read More >
21st Jan
Precedents

Data protection impact assessment—consultation form

[Insert title of project]—[insert who you are consulting, eg Employee consultation][Insert name of company or firm]1Introduction[Provide a brief...
Read More >
21st Jan
Precedents

Response to data subject request—right of access—unable to comply with request

[Name of individual making request][Address of individual making request][Date of this response]Dear [insert name of individual making request]I am...
Read More >
21st Jan
Practice notes

Data protection by design and default

Data protection by design and default (DPbDD) is often overlooked by organisations when considering their UK GDPR compliance obligations. This is...
Read More >
21st Jan
Practice notes

Getting the Deal Through: Data Protection & Privacy 2021

Jurisdictions coveredThe following jurisdictions are covered in this report:Australia; Austria; Belgium; Brazil; Canada; Chile; China; Colombia;...
Read More >
21st Jan
Precedents

Response to data subject request—all rights—requesting identity information or confirming authority

[Name of individual making request][Address of individual making request][Date of this response]Dear [insert name of individual making request]I am...
Read More >
21st Jan
Precedents

Response to data subject request—all rights—charging a fee or extension of time to respond

[Name of individual making request][Address of individual making request][Date of this response]Dear [insert name of individual making request]I am...
Read More >
21st Jan
Precedents

Data protection by design—policy

1Data protection by design and default—the concept1.1Data protection by design and default (DPbDD) is a requirement of the UK General Data Protection...
Read More >
21st Jan
Precedents

Data subject requests register

The UK General Data Protection Regulation (UK GDPR) provides rights for data subjects including providing rights of access, rectification, erasure and...
Read More >
21st Jan
Precedents

Training materials—data and information protection for staff

IP COMPLETION DAY: 11pm (GMT) on 31 December 2020 marks the end of the Brexit transition/implementation period entered into following the UK’s...
Read More >
21st Jan
Precedents

Data mapping—internal questionnaire

It is important that we understand what personal data we hold, so we can take steps to protect that data, as required by law.Please complete this...
Read More >
21st Jan
Precedents

Sample data processing map

1Identify and document why the organisation processes personal dataRather than trawling the organisation for personal data in an unfocused way, think...
Read More >
21st Jan

Popular documents

LEXISNEXIS

Scrip dividends

Dividends involve a distribution of cash or a distribution of non-cash assets (known as a distribution in kind or a distribution in specie).A scrip dividend (in a tax context, sometimes referred to as a stock dividend) allows a shareholder to receive new shares in a company as an alternative to a

LEXISNEXIS

Contract interpretation—express terms in contracts

Express and implied contractual terms distinguishedContractual terms may be either express or implied:•express terms—are terms which are actually recorded in a written contract or openly expressed in an oral contract at the time the contract is made (or there may be a combination of written and oral

LEXISNEXIS

What is electronic money?

BREXIT: UK is leaving EU on Exit Day (as defined in the European Union (Withdrawal) Act 2018). This has an impact on this Practice Note. For further guidance on the impact of Brexit on e-money requirements, see Practice Note: Impact of Brexit: Payment services and electronic money directives—quick

LEXISNEXIS

Burden and standard of proof in criminal proceedings

There are two kinds of burden:•the legal burden, and•the evidential burdenThe legal burdenA party has the legal (sometimes called ‘the persuasive’) burden where the onus is on that party to prove a fact or issue in a case to the required standard of proof.The legal burden is generally on the