Latest News | News

Are You GDPR Ready?

It’s the final countdown… the 25 May 2018 is now fast approaching. It is hard to escape the fact that the imminent and hotly discussed General Data Protection Regulations (GDPR) are about to come into force in the UK. But how many of you know what this actually means for you and your business and what measures and actions you need to take now to avoid falling foul of these new crippling penalties for breach of this new legislation?

The GDPR will greatly increase regulation when it comes to collecting and processing personal data from your employees, workers, self-employed contractors and also customers (and future customers), particularly in respect of a lawful basis for such processing. The previously-used consents are very likely to be void and there are therefore other lawful conditions which must be satisfied in order to comply with the requirements of the GDPR regime.


You need to prepare your business now to comply with the GDPR’s imminent arrival and review your operations for a future where either:

  1. data protection and privacy is at the core of the business-consumer relationship and/or
  2. you have employees, workers or self-employed contractors.


Whether you are a director, a marketing executive or an administrator, we can:

  • Advise you in relation to undertaking an internal audit of your company’s existing data processing methods to make sure they are GDPR compliant, and if they aren’t, help you make the necessary changes;
  • Help you to identify the most appropriate basis for your business to legally process personal data and how you should document this;
  • Draft a GDPR compliant privacy policy for you to display on your website to inform your customers how you collect, process and use their personal data;


Draft GDPR compliant HR policies for your business including how to:

  • deal with data protection breaches
  • handle data subject access/information requests from your staff
  • securely destroy personal data that you hold
  • make sure that any personal data you have is accurate and kept up to date
  • deliver regular GDPR training to all of your staff
  • appoint a data protection officer
  • prepare privacy notices for employees, workers and self-employed contractors.


Review your current contracts or terms and conditions to ensure that they are GDPR compliant;

  • Prepare a checklist of steps that you will need to take now to ensure that your company is GDPR compliant; and
  • Advise you how to lawfully contact your customers and contacts for marketing purposes now and after the 25th May 2018.


If you would like to find out more about how Fletcher Day can help you, please contact Elle Berrett in the Corporate team or Andrea London in the Employment team.

The contents of this article are intended for general information purposes only and shall not be deemed to be, or constitute legal advice. We cannot accept responsibility for any loss as a result of acts or omissions taken in respect of this article.