Q&As

Comprehend the law and how it impacts your clients. Q&As shine a light on common issues

Legal Research

Q&As
US government surveillance in the context of EU data protection lawIn Data Protection Commissioner v Facebook Ireland and Maximillian Schrems, Case...
5th Aug
Q&As
Does the UK GDPR apply to mixed datasets?This Q&A considers whether the requirements of the UK General Data Protection Regulation (UK GDPR), Retained...
1st Aug
Q&As
Does the GDPR prevent law firms or other professional services providers from charging clients for storing or retrieving their files?Law firms—sector...
1st Aug
Q&As
What is the legal basis for HM Treasury Office of Financial Sanctions Implementation (OFSI) annual frozen assets review, and are OFSI requests for...
1st Aug
Q&As
What role does integrity play in the coronavirus (COVID-19) compliance landscape, and how will it impact business continuity in the aftermath of the...
Produced in partnership with Emily Lewis and Rubi Palmieri of Fulcrum Chambers 1st Aug
Q&As
If a multinational company with entities in a number of EU states has registered a data protection officer (DPO) with the Information Commissioner’s...
Produced in partnership with Alexander Dittel of Kemp Little 1st Aug
Q&As
Do I have to send my new or updated privacy policy to former clients?If you hold personal data of former clients, then you will be processing it for...
1st Aug
Q&As
Do I have to refresh marketing email consent obtained by a pre-ticked box on our website?—law firmsSee Practice Note: Processing personal data—direct...
1st Aug
Q&As
How can compliance teams ‘do more with less’ and ensure their companies avoid the existential threat of a compliance breach, while fighting to avoid...
Produced in partnership with Emily Lewis of Fulcrum Chambers and Rubi L M Palmieri of Fulcrum Chambers 1st Aug
Q&As
Do I have to update customer due diligence (CDD) documentation when it expires, eg a copy passport, for AML purposes?Ongoing monitoringThe Money...
1st Aug
Q&As
When does the 72–hour time limit for notifying the ICO of a data breach come into force and start to run?Article 33 of the General Data Protection...
1st Aug
Q&As
What are an organisation’s obligations under data protection law to verify a caller’s identity?The EU General Data Protection Regulation (GDPR)...
1st Aug
Q&As
When barristers receive papers from instructing solicitors, are they obliged to serve a privacy notice on the lay client?The Q&A: When a solicitor...
1st Aug
Q&As
Can we put privacy information on our website for people to find?Practice Note: Privacy notices—information requirements sets out the information you...
1st Aug
Q&As
How do I determine what customer due diligence (CDD) measures to apply to a customer?You should determine the risk posed by an individual customer as...
1st Aug
Q&As
What risk management measures should I be taking now to help my business prepare for a possible coronavirus (COVID-19) second wave?As the numbers of...
1st Aug
Q&As
How can I ensure my organisation and staff stay safe while using video-conferencing during the coronavirus (COVID-19) pandemic?With the urgent move to...
1st Aug
Q&As
Is a DPIA required where I am under a legal obligation to process personal data?Practice Note: Data protection impact assessments—DPIAs sets out when...
1st Aug
Q&As
What are the potential lawful grounds for processing the personal data of third parties received by a professional services firm in the course of...
1st Aug

Popular documents