It has now been over five years since the GDPR (General Data Protection Regulation) came into force – and with it a major shift in what was expected of organisations when it comes to data protection compliance.
Although the GDPR was originally a European regulation, the standards and principles it set out have been transposed into UK law through the Data Protection Act 2018, which introduced a new UK GDPR.
Since then in the intervening period, employers have navigated the COVID pandemic and massive changes to the way we work with the increase in hybrid working, which has inevitably led to changes in the way they hold and utilise data. From our experience advising clients on their data protection compliance obligations over these last five years, here are our top tips when it comes to managing data protection issues in the workplace:
We often say that compliance is a journey, not a destination. It requires an ongoing commitment and if the team at Burness Paull can help you along the way please do not hesitate to get in touch. In particular, now might be a good time to consider carrying out an organisation-wide privacy audit / compliance “health check” through our newly established Data Protection Consultancy practice. If that sounds of interest, you can contact us here to arrange a time to discuss further.
For further information on how we can assist with any subject access request queries, please see here.
Written by
Related News, Insights & Events
Trade union and industrial relations: Key changes under the Employment Rights Bill
Guidance for employers on the updated proposed changes to trade union and industrial action laws under the Employment Rights Bill.
Risk Resilience in 2025
26/03/2025
Join our expert team to consider the top issues that we believe should be on your risk register in 2025.
Webinar: Employment Law Lab
25/03/2025
Join us for our next free employment law webinar on Tuesday 25 March.
