Data Compliance

In 2018, data compliance was overhauled for all organisations when the General Data Protection Regulation (GDPR) was enacted into UK law through the new Data Protection Act. This legislation puts data compliance where it should be, as a vital element within any project that uses personal data. But GDPR is not the only legislation governing the use of personal data for marketing - the Privacy and Communications Regulations (PECR) is equally important. 

Our data compliance expertise has supported many organisations across many sectors stay on the right side of the law. We don’t provide legal advice, but we do help our clients by highlighting potential risks, allowing them to change their approach to mitigate them. In one case, we stopped a client from emailing certain people as they didn’t have a clear enough legal basis to do so. In another, we recommended deleting a lot of old data that was no longer required. And for others, we documented their data processes so they could clearly understand where any personal data was being processed. We regularly support our clients with DPIAs and LIAs. And if you don’t know what they are, perhaps you should.