LexisPSL Risk & Compliance is an online practical guidance product for in-house legal and compliance teams dealing with the ever-increasing and ever-shifting burden of risk and compliance.
Our content is written and structured to cover a wide-range of topic areas, all of which we know are areas of concern for in-house legal and compliance professionals, including: data protection, crises management, anti-bribery and corruption and external investigations.
Our Practice Notes tell you what you need to know, what you need to do and more importantly how to comply with the raft of rules and regulations. We also have an extensive suite of Precedents and tools, including panic sheets, workflows, checklists, training aids, registers, policies and plans.
LexisPSL Risk & Compliance is supported by an in-house legal team with extensive experience in practice and dedicated to producing content specifically for busy practitioners. This experience, combined with extensive customer research, has shaped our practical guidance on risk and compliance issues. We have built and continue to develop our product with the assistance of leading experts in the field.
Data security is a cornerstone of the EU General Data Protection Regulation (GDPR). The sixth data protection principle (the integrity and confidentiality principle)...
A data protection impact assessment (DPIA) does what the name suggests—it’s a way of assessing the data protection impact of a particular project or process on any...
Forthcoming changes: The UK has voted to leave the EU and this will take place on exit day as defined in section 20 of the European Union (Withdrawal) Act 2018. This has...
Managing risk is not a one-off event, it is an ongoing process, as illustrated below: This Practice Note provides guidance on evaluating and recording risks by way of a...
After four years of negotiation, amendments and drafting Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of...
This Practice Note provides practical guidance on how to undertake data mapping. It is based on an article by Nicola Fulford of Hogan Lovells and Krysia Oastler of Kemp...
The Modern Slavery Act 2015 (MSA 2015) received Royal Assent on 26 March 2015. Section 54 requires some organisations to produce and publish an annual slavery and human...
The General Data Protection Regulation, Regulation (EU) 2016/679 (GDPR), in force from 25 May 2018, provides for enhanced rights for data subjects in the EU in relation...
This Practice Note explains what legal professional privilege (LPP) is, including loss and waiver of LPP, summarises key case law and outlines LPP issues in other...
A privacy risk register is a tool that allows you to collate, record, track and manage all your data protection, information security and privacy risks information in one...
Lawyers generally have a reputation among business people for being risk averse. In-house lawyers cannot be excessively risk averse—they have to embrace risk, knowing how...
Section 54 of the Modern Slavery Act 2015 (MSA 2015) places obligations on 'commercial organisations' that: • supply goods or services • carry on business wholly or in...
An organisation cannot simply process personal data because it wishes to do so. It can only process personal data if it satisfies one of the conditions set out in Article...
Legal Professional Privilege (LPP) protects the confidentiality of written and oral communications between lawyers and clients. It entitles a party to withhold evidence...
Under Regulation (EU) 2016/679, the General Data Protection Regulation (GDPR), certain organisations are required to appoint an individual to act as their data protection...
Why you need to manage this risk Since the morning of 24 June 2016, all businesses have faced significant uncertainty about what the future holds for the UK post-Brexit....
