Data Protection and the GDPR – Two Years on
Data Protection and the GDPR - Two Years on
GDPR: Top UK law firms falling victim to human error
‘Nearly half (48%) of the top 150 law firms have reported data breaches since the GDPR came into force in May 2018. And, of those breaches, 41% were a result of emailing the wrong person.’ Legal Futures 24 January 2020
GDPR and the Data Protection Act 2018 have now been in place for almost two years. When introduced we had not seen new legislation for data protection for almost 20 years. This meant a lot of changes had to be made in the way we work with our IT systems and paper files. Data subjects were given more rights around their data and the way we use it.
Now, almost two years on, it’s maybe time to have a refresh of what was put in place to ensure we are still compliant.
What You Will Learn
- Data Protection Act 2018 and the GDPR
- The implications of Brexit
- Change comparison from the Data Protection Act 1998 including:
- New definitions
- Principles – what’s out and what’s in
- Data subject rights – enhanced rights
- Subject access requests
- Data Protection Officer or Compliance Officer – what the role entails
- Compliance – reporting of breaches
- Data Impact Assessments
- Breach reporting
- Day to day working – where breaches occur
- What can you put in place to prevent breaches
- The SRA Risk Outlook 2019/20 – cybercrime and information security a priority risk
Joanna Morris has over 30 years’ experience of working in solicitors’ practices from being a legal cashier, practice manager & training manager. Joanna is a freelance trainer and consultant having previously been the Risk & Regulatory Compliance Training Manager at a top 40 law firm. Jo currently delivers training in many compliance subjects, both to the public and in-house clients, on AML, GDPR, SRA Accounts Rules and courses designed specifically for the MLRO, DPO, COLP and COFA. She is a qualified NVQ assessor and holds a Certificate In Education for Teaching in the Lifelong Learning Sector.