As a follow up to my GDPR post last week do check out this video put together by law firm Lewis Silkin. I love a list and this a nice summary of key things we all need to do:
- Map and audit your data flows
- Identify your 3rd party processors
- Identify cross border transfers
- Some firms will need a Data Protection Officer
- Don't rely on consent - (but know all about how to process data and contact if is 'proportionate processing for a legitimate business interest')
- Adapt your privacy notices and policies
- Get ready for changes to data subject access requests (no more £10 fee)
- Consider privacy implications at all stages
- Breach management - you will have just 72 hours to report any breach
- Training across your organisation. This could impact every level of your hierarchy
- Identify your lead regulator
/Passle/53d0c8edb00e7e0540c9b34b/MediaLibrary/Images/2026-05-01-10-22-49-895-69f47ef9cb2c8884e0253d08.jpg)
/Passle/53d0c8edb00e7e0540c9b34b/MediaLibrary/Images/2026-06-11-07-57-59-779-6a2a6a878c7ae3664e95098f.png)
/Passle/53d0c8edb00e7e0540c9b34b/MediaLibrary/Images/2026-06-12-17-32-55-822-6a2c42c7e65afd2bcf744ea5.jpg)
/Passle/53d0c8edb00e7e0540c9b34b/MediaLibrary/Images/2026-06-09-21-06-31-226-6a288057e96ad9e6cd175ed3.jpg)
/Passle/53d0c8edb00e7e0540c9b34b/MediaLibrary/Images/2026-06-09-22-46-23-806-6a2897bf1c2341c66d2ebef2.jpg)
