• 0161 696 6170
  • Request a callback
Stephensons Solicitors LLP Banner Image

GDPR & data protection

The General Data Protection Regulation (GDPR) will come into force in the UK on 25 May 2018. The GDPR is a new law that significantly extends and strengthens the current law regarding data privacy. The new regime is, in part, intended to force a cultural change in how organisations protect the personal data of private individuals and bring the law up to date with advances in technology. It is much stricter than the current regime and the ICO will have the power to impose much greater financial penalties for non-compliance of up to 4% of your annual global turnover for the preceding financial year or £18 million – whichever is greater. 

All organisations that hold and process personal data must be compliant.  They will also be required to actively demonstrate compliance with the new regulations. It is crucial that all organisations take action now in order to adequately prepare for the GDPR as well as maintaining and demonstrating compliance from 25 May 2018 onwards. 

 

Excellent4.6 score on Trustpilot
Rated 4.6 / 5 Based on 2134 reviews
Read all reviews

Preparing for GDPR

Preparing for GDPR can be a real challenge and will be a huge task for many organisations. The GDPR is likely to have a particularly significant impact upon sectors that routinely handle significant amounts of sensitive personal (special categories of) data such as medical records. It may be mandatory for you to appoint a Data Protection Officer for your organisation under the GDPR.  You may be uncertain about the new regulations and how to practically apply them within your organisation.  The challenge also extends way beyond the immediate weeks and months following the implementation of the GDPR.  All organisations will face the challenge of adequately maintaining compliance in the future. 

We are here to help you

If you are preparing your organisation for the GDPR or find yourself facing a complaint, court proceedings or an ICO investigation for breach of a data protection or if you are simply keen to ensure that your organisation has adequate procedures in place to minimise the risk of a breach occurring, then we can help.  Call us now on 01616 966 229.

What prosecution powers do the CQC have?

The CQC has a wide range of criminal enforcement powers which include the power to prosecute and issue fixed penalty notices or simple cautions to organisations and individuals. These powers are, however, limited to registered providers and certain...

Read more

The consequences of failing to register with the CQC

Between 2023 and 2024, it is reported that the Care Quality Commission (CQC) has undertaken four prosecutions of businesses carrying out regulated activities without CQC registration. The list of prosecutions undertaken by the CQC since 2009 can be found...

Read more