We continue to assist businesses with their internal GDPR compliance programmes. The rules are complicated and nuanced, but we can break GDPR down into bite size chunks, minimising the impact on your business. With our help, you can be confident that you have the necessary processes, procedures and documents in place.

We advise on the initial stage of conducting a data mapping exercise. We analyse the results of a data audit on a risk assessment basis and determine the extent of GDPR compliance. We can also help you with any additional steps you need to take to achieve GDPR compliance. Examples include preparing bespoke internal and external policies and documents, providing training and guidance notes and cooperating with third parties to update systems and procedures.

We can also advise you on the impact of GDPR on marketing initiatives, as well as on the application of the Privacy and Electronic Communications Regulations 2003 (“PECR”) (and its proposed successor legislation) to electronic direct marketing. Website compliance, including the production of privacy and cookie policies and advice on PECR compliant cookie banners and consent, also falls within our remit.