Data Protection Law

Is this document 100 per cent legal?

22 Dec 2018
Posted in Contract Law, Data Protection Law

Clients who are new to legal documentation and may be unfamiliar with the operation of commercial law will sometimes tell me that they want a document that is “100 per cent legal” or similar. However, it is usually not possible to guarantee absolute legality and it may not be even be desirable. It all depends […]

Read more

Intra-group data sharing agreements: the ingredients

28 Sep 2018
Posted in Data Protection Law

Corporate groups usually share data, including personal data. The sharing of personal data is regulated under UK and EU data protection law (ie the GDPR and the Data Protection Act 2018), and in many cases sharing will not be lawful without an appropriate framework in place. For SMEs, that framework will usually take the form […]

Read more

Cyber security policy templates as small business tools

31 Aug 2018
Posted in Data Protection Law, Other

For this post, I interviewed cyber security expert Emma Osborn of OCSRC Ltd. Emma has recently produced a range of template cyber security documents in collaboration with SEQ Legal (available on Docular and Website Contracts), and in this post we explore the function of these documents in the context of small and medium-sized businesses. Q. […]

Read more

Thinking about data sharing agreements

01 May 2018
Posted in Data Protection Law

The sharing of personal data by businesses and other organisations is, within Europe and to an extent outside Europe, subject to the General Data Protection Regulation (GDPR). If your organisation is sharing personal data with another organisation, you should be thinking about the legal implications of the sharing. It is useful to categorise sharing in […]

Read more

Creating a privacy policy for your WordPress website

17 Apr 2018
Posted in Data Protection Law

All the privacy policy documents (and other templates) on Docular have been updated for the GDPR, and this tool is particularly useful for creating privacy policies for websites operated by business in the UK and EU. Step 1: Create a Docular account First you should create a Docular account, here: https://docular.net/users/register Step 2: Choose your […]

Read more

New ICO fees

12 Mar 2018
Posted in Data Protection Law

On 20 February 2018, the UK government published changes to the funding of the ICO.  The Information Commissioner’s Office (ICO) is an independent body which oversees compliance with data protection legislation in the UK. On 25 May 2018 a new data protection scheme for businesses and organisations throughout the EU comes into effect –  this […]

Read more

How to write a data breach notification policy

17 Feb 2018
Posted in Data Protection Law

Businesses and other institutions collect and generate vast amounts of data about the individuals with whom they come into contact.  Many organisations hold records relating to millions of individuals.  Some of this data is highly confidential; and the theft or unauthorised disclosure of even non-confidential this data can cause real damage.  Security incidents involving personal […]

Read more

How the GDPR will damage personal data security

11 Jan 2018
Posted in Data Protection Law

The GDPR should enhance the protection of personal data across the EU and beyond. That’s one of the core functions of the legislation – along with improved harmonisation of data protection law within the EU. However, having spent much of the last 9 months helping clients to prepare for the GDPR, I’m concerned that the […]

Read more

GDPR, sub-processors and authorisations

04 Oct 2017
Posted in Data Protection Law

Article 28(2) GDPR provides that a processor of personal data “shall not engage another processor without prior specific or general written authorisation of the controller. In the case of general written authorisation, the processor shall inform the controller of any intended changes concerning the addition or replacement of other processors, thereby giving the controller the […]

Read more

Article 28 of the GDPR: problems for processors

20 Jul 2017
Posted in Data Protection Law, Uncategorised

The GDPR*, which will come into force on 25 May 2018, represents a major evolution in EU data protection law. Data subjects’ rights are strengthened across the board, with a concomitant toughening of obligations for data controllers and data processors. In this post, I look in detail at three problems for cloud services providers arising […]

Read more
SEQ Legal
Copyright © 2020 Docular Limited All rights reserved