The GDPR: What? When? Why? How?
 
   
 
The GDPR: What? When? Why? How?




All organisations will need to prepare for the General Data Protection Regulation (GDPR). This is especially significant for law firms given the type of data processed by lawyers. While many of the details are still unclear, there are general issues which you can usefully address now. The GDPR is in force and will be enforced from 25 May 2018. With greatly increased financial penalties and an obligation to report personal data breaches.

Why should I attend?

To assist you to prepare, Tim Musson and Laura Irvine will guide you through a range of issues including the following:

  • Brexit and the GDPR
  • Enforcement - penalties and compensation/class actions
  • The data protection officer's role and do you need one?
  • What should privacy notices contain?
  • Identifying the legal basis for processing and why that is more important under GDPR
 
Speaker
Laura Irvine
BTO Solicitors
Laura is a criminal Solicitor Advocate and a regulatory lawyer with a particular interest and expertise in data protection and information law. Laura previously worked as a prosecutor in Scotland.

Laura works in BTO’s Dispute Resolution Team and deals with clients who find themselves involved with the Regulators. Increasingly her work focuses on making sure that clients avoid the wrath of the Information Commissioner’s Office. She provides pragmatic and practical advice immediately after an incident (including health and safety incidents or data incidents) throughout an investigation and until any court proceedings are concluded.

Laura was co-counsel in relation to the first, and to date, only successful appeal against an ICO fine for a breach of the Data Protection Act 1998. As a result Scottish Borders Council had their £250,000 fine returned to them!

Laura regularly provides contentious advice and assistance following data and cyber incidents to clients in the private, public and third sectors. She assists clients in handling subject access requests, freedom of information requests and data protection compliance issues. Currently her focus is on the implementation of GDPR and how to comply in advance of the Regulation coming in on 25 May 2018.
 
Tim Musson
Computer Law Training
For many years Tim Musson was a lecturer in the School of Computing at Edinburgh Napier University. In 2009 he graduated with a Master of Laws degree from the University of Strathclyde and left to set up his business, Computer Law Training, specialising in Data Protection and Information Security.

In this business Tim focuses on training in Data Protection and Information Security, support for Data Protection compliance and Information Security (audits, procedures, policies, etc) and offering an outsourced Data Protection Officer Service. He is a frequent speaker at Law Society of Scotland seminars and conferences, and, by invitation, at other events and conferences. In addition to his other clients he provides large numbers of Scottish solicitors with CPD training in data protection and the GDPR.

He is currently Convenor of the Law Society of Scotland’s Privacy Law Committee, where he has contributed to consultations on the new EU General Data Protection Regulation and the Investigatory Powers Act. He is also a member of the Technology Law and Practice Committee.

Twitter: @timmusson
Linkedin: linkedin.com/in/timmusson



 
 
Book