GDPR compliance

View Risk & Compliance by content type:

Latest Risk & Compliance News

Featured Risk & Compliance content

Practice notes
Dawn raid—who can raid my organisation and why?IP COMPLETION DAY: 11pm (GMT) on 31 December 2020 marks the end of the Brexit transition/implementation...
Read More >
Produced in partnership with Michael Potts of PCB Byrne 19th May
Practice notes
Conflicts of interest, confidentiality and disclosure 2019—in-house lawyersThe SRA Code of Conduct for Solicitors, RELs and RFLs (Code for Solicitors)...
Read More >
19th May
Practice notes
Brexit—exiting the EU under Article 50 [Archived]ARCHIVED: This Practice Note has been archived and is not maintained.This Practice Note contains...
Read More >
Produced in partnership with Adam Cygan of University of Leicester 19th May
Precedents
1DefinitionsModern Slavery Policy•means the Customer's anti-slavery and human trafficking policy as set out in Schedule [insert] as updated by the...
Read More >
19th May
Practice notes
High-risk third countries trackerOrganisations caught by the Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer)...
Read More >
19th May
Practice notes
Active bribery, passive bribery and bribing foreign public officialsThe purpose of this Practice Note is to provide a general understanding of the...
Read More >
Produced in partnership with Joanne Kane of Carmelite Chambers 19th May
Practice notes
Money Laundering Regulations 2017—simplified due diligenceYou may apply simplified customer due diligence (SDD) measures in relation to particular...
Read More >
19th May
Practice notes
Proceeds of Crime Act 2002—key information for businessesThe Proceeds of Crime Act 2002 (POCA 2002) came into force on 24 February 2003. It applies to...
Read More >
19th May
Practice notes
Brexit legislation trackerThis Practice Note tracks the progress of UK legislation introduced as part of the legislative project associated with the...
Read More >
19th May
Practice notes
Tipping-off and prejudicing an investigationThere are several offences of tipping-off and prejudicing an investigation that apply to the regulated...
Read More >
19th May
Precedents
In briefThis precedent links to: •a template created by the UK Information Commissioner’s Office (ICO) of the ‘Set II’ or ‘2004’ EU Standard...
Read More >
19th May
Practice notes
Introduction to retained EU lawThis Practice Note provides an introduction to retained EU law. It provides an overview of the key definitions and...
Read More >
Produced in partnership with Dr. Kieran Laird of Gowling WLG 19th May
Practice notes
SRA Code of Conduct for Solicitors, RELs and RFLs—for in-house lawyersThis Practice Note provides guidance for in-house solicitors on the SRA Code of...
Read More >
19th May
Precedents
1IntroductionThis financial sanctions policy is designed to ensure we comply with applicable financial sanctions laws made under the UK sanctions...
Read More >
19th May
Practice notes
Getting the Deal Through: Merger Control 2021Jurisdictions coveredThe following jurisdictions are covered in this report:Albania; Australia; Austria;...
Read More >
19th May
Practice notes
Working with European lawyers—the Registered European Lawyer (REL) regimeAt 11 pm (GMT) on 31 December 2020, the Brexit transition/implementation...
Read More >
19th May

Most recent GDPR compliance content

Practice notes
Data sharing—practical complianceThis Practice Note explains the practical issues commercial organisations should consider when preparing to share or...
Read More >
6th Sep
Practice notes
Data protection impact assessments—DPIAsA data protection impact assessment (DPIA) does what the name suggests—it’s a way of assessing the data...
Read More >
6th Sep
Practice notes
Data protection and privacy—USA—Q&A guideThis Practice Note contains a jurisdiction-specific Q&A guide to data protection and privacy in USA published...
Read More >
5th Sep
Precedents
Data mapping—internal questionnaireIt is important that we understand what personal data we hold, so we can take steps to protect that data, as...
Read More >
3rd Sep
Precedents
Sample data processing map1Identify and document why the organisation processes personal dataRather than trawling the organisation for personal data...
Read More >
3rd Sep
Precedents
Data protection impact assessment—DPIA—short form1Identify the need for a DPIAExplain broadly what project aims to achieve and what type of processing...
Read More >
3rd Sep
Precedents
Data protection impact assessment—DPIA1Project overviewProject summary[Summarise the project, eg new IT system for storing and accessing personal...
Read More >
2nd Sep
Precedents
Data protection impact assessment—DPIA—report1Project overview[Insert an overview of the project, explaining why it necessary and how it will impact...
Read More >
2nd Sep
Practice notes
Data protection principlesOn 31 January 2020, the UK ceased to be a member of the EU and EEA. Given the extensive data flows between the EEA and UK,...
Read More >
Produced in partnership with Pillsbury Winthrop Shaw Pittman LLP 31st Aug
Practice notes
Employee health information—data protection issuesFrom IP completion day (11pm on 31 December 2020), Regulation (EU) 2016/679, General Data Protection...
Read More >
26th Aug
Precedents
Personal data sharing schedule—controller to controller—pro-disclosing partyDefined terms: This precedent schedule uses the additional defined terms...
Read More >
26th Aug
Precedents
Personal data sharing clause—controller to controller—pro-receiving partyDefined terms: This precedent clause uses the additional defined terms...
Read More >
26th Aug
Practice notes
List of data protection clauses and agreements for commercial transactions and personal data processing and sharingThis Practice Note is a...
Read More >
26th Aug
Practice notes
Privacy notices—information requirementsThis Practice Note sets out information requirements that are contained at various places in the UK General...
Read More >
26th Aug
Practice notes
The UK GDPR and DPA 2018: lawful processing of personal data in employmentCoronavirus (COVID-19): Issues relating to data protection during the...
Read More >
25th Aug
Q&As
Can the Model Clauses be amended to limit or exclude the rights of a data subject?Amending Model ClausesClause 10 of the 2010 Model Clauses provides...
Read More >
25th Aug
Precedents
Website privacy policyPolicy version: [insert date of this policy][ — for previous versions of this policy see here][Insert website] (our website) is...
Read More >
25th Aug
Precedents
Standard contractual clauses for international transfers—2004 (set II)—controller to controller—ICO templatesIn briefThis precedent links to: •a...
Read More >
25th Aug
Precedents
Standard contractual clauses for international transfers—2010—controller to processor—ICO templatesIn briefThis precedent links to:•a template created...
Read More >
25th Aug
Q&As
When using the Model Clauses for the transfer of data between the EU and the US, if you amend in some way, does this deem them invalid in their...
Read More >
25th Aug

Popular documents