Data Protection
A company’s IT security and privacy compliance may not always be sufficient. In fact a recent study conducted by consultancy firm, Capgemini showed that only 28% of organisations believed that they were fully compliant with GDPR. The lack of certainty surrounding compliance can lead to significant problems in administration or on sale. Buyers of IT heavy or consumer facing businesses will expect comprehensive warranties concerning IT and data security and GDPR compliance.
Practitioners may not be aware that in certain circumstances, they may be held individually liable for breaches of data protection laws where they carry on the business of a company in administration.
We can assist practitioners:
- Understand their duties and obligations as data controllers of personal data processed by a company in administration;
- Audit a company’s data protection compliance and provide practical recommendations;
- Prepare for the sale of assets by producing or adapting existing data protection notices, policies, procedures and other documentation;
- Produce appropriate data protection warranties or indemnities within sale documentation;
- By advising on immediate steps when dealing with subject access requests or communications with the Information Commissioners Office.
“An exceptional balance of expertise and personality.”