On Tuesday 21st November, an associate solicitor from Bray & Bray presented a seminar on the General Data Protection Regulations (GDPR) that will come into effect in the UK from 25th May 2018. The seminar was presented alongside experts from The Ideal Marketing Company and Haines Watts Chartered Accountants at The National Space Centre in Leicester.

Legal GDPR considerations for businesses


The legal aspects of GDPR covered by Gordon Monaghan included the principles of data processing, data subject rights, what to do if there is a data breach and who holds accountability for the processing of data within a business.

Introducing the subject to delegates, Gordon’s presentation began by putting GDPR into context in the modern day – using examples of what the world was like when the provisions of the current Data Protection Act were drafted in 1995, citing that Google hadn’t even been created.

GDPR and ‘The Right to be Forgotten’


Gordon also covered the subject of ‘The Right to be Forgotten’ and how to manage requests for erasure of personal data in line with other legal considerations.  This included when it is possible to keep a minimal amount of data for a specific amount of time in line with insurance, tax or legal requirements, as well as answering questions about what to do if an employee wants their data removed permanently.

Understanding what businesses need to know about GDPR


Commenting on how businesses are reacting to GDPR in his experience so far, Gordon says:

“I have been lucky enough to both attend and present at a range of GDPR seminars and each time, I have found that many business owners had found the legal considerations around GDPR hard to digest.  This isn’t because they’re difficult to understand or implement – it’s simply that finding a concise and accurate summary of the position can be difficult at the moment when businesses are being bombarded with a whole raft of guidance and suggestions of what they should be doing.”

Alongside Gordon’s presentation, Steven Connors from Haines Watts gave recommendations around best practice for cyber-security policies and provided an insight of how the ICO are managing non-compliance with GDPR.  Jessica Shailes from The Ideal Marketing Company then covered GDPR and marketing. Jessica spoke about technical aspects such as compliant email campaigns, cookie and privacy policies, and practical advice on how to build and maintain a GDPR friendly data list.

Advice about your business’ upcoming legal GDPR obligations


For expert legal advice about how GDPR will affect your company or to enquire about holding a seminar or workshop for your business, contact Gordon directly at gmonaghan@braybray.co.uk