In 2018 the General Data Protection Regulation (GDPR) came into force for EU countries, and the UK put it on the domestic statute book with the Data Protection Act 2018. The Data Protection Act was a result of an EU regulation but it’s highly unlikely that Brexit will result in any relaxation in the rules. Strict legislation on data protection is here to stay!
Embedding data protection into the company culture from the outset will avoid the risk of ICO fines that more established companies receive when they allow data protection compliance to ‘slip’ as a priority. A new company has the opportunity to build data protection into policies, procedures and reviews.
Ensuring compliance with data protection brings two major benefits to a startup; if found to be in breach of the regulations the fine could cripple a new business, destroy customer trust, and require the deletion of valuable personal data.
It also demonstrates to potential clients and customers that you are a serious business, with a responsible approach to legal obligations. Many businesses, particularly large ones, require their supply chains to be fully legally compliant with all manner of legal and corporate social responsibility matters like data protection and Modern Slavery.
Fixed Fee Data Protection Package
At JPP Law we understand the importance of data protection but also that spiraling legal costs are a major concern for startups. This is why we provide packaged legal services at a fixed price. For data protection we offer a fixed fee Data Protection Document Package which can include any combination of:
- Privacy Policy
- Cookie Policy
- Data Protection Policy
- Privacy notice
- Staff fair processing notice
- Data subject access request policy
- Retention schedule
- Data processing schedule
- Data transfer agreements
- IT security policy
- Internet use policy
- Data protection clause for terms and conditions/contract
- Staff training
- Website Terms of Use
- Acceptable Use Policy