GDPR

Our GDPR guide for law firms provides a step by step guide to understanding GDPR. The requirements under the GDPR are broadly similar to the Data Protection Act 1998 (DPA) but they give additional weight to the rights of the subjects of any data collection, most obviously, in terms of penalties.

You can find the official text of the General Data Protection Regulation at eur-lex.europa.eu.

GDPR guide for law firms

Data protection regulations from the perspective of a legal practice

Read more

Law Society blogs

We're publishing a series of blogs from experts, including members of our Privacy Law Committee, about the key issues and considerations you should take into account.

Data Protection Act 2018 and GDPR
Laura Irvine, partner at Davidson Chalmers Stewart solicitors and author of our 'Guide to GDPR', discusses how change in the final wording of the Data Protection Act 2018 will help solicitors when dealing with third party subject access requests.

Changes to the guidance on ownership and destruction of files
Fiona J Robb, Director of Professional Practice, talks about changes to the guidance on ownership and destruction of files in anticipation of the imminent arrival of GDPR.

GDPR privacy notices
Angus MacLeod, partner at Wright, Johnston & Mackenzie LLP, explains what you should put in a privacy notice and when you need to give one.

Whats new for Controllers and Processors under GDPR
Tamasin Dorosti, recent secondee at our Brussels office, explains the new compliance obligations for 'controllers' and 'processors' under GDPR.

GDPR privacy by design and default
Deborah Dillon, EU Data Privacy and GDPR Executive Consultant at Atos, explains 'privacy by design' and 'privacy by default' and what this means for your organisation.

GDPR new year new guidance
Tim Musson, Convener of the Law Society of Scotland’s Privacy Law Committee, gives us an update on the latest General Data Protection Regulation (GDPR) guidance.

GDPR data protection officers
Dr Kenneth Meechan, member of the Law Society of Scotland’s Privacy Law Committee, explains the new rules on data protection officers and sets out some important tasks which all law firms should consider.

GDPR legal basis and why it matters
Carolyn Thurston Smith, policy executive at the Law Society of Scotland, explains the legal bases in article 6 of the General Data Protection Regulation (GDPR).

GDPR changes to consent
Domhnall Dods, regulatory solicitor and GDPR expert at Towerhouse and member of the Law Society’s Privacy Law Committee, explains the changes to rules around consent in the General Data Protection Regulation (GDPR).

GDPR Personal data breaches
Anna Drozd, policy adviser on professional issues at our Brussels Office, explains what personal data breaches are and how to report them under the GDPR.

GDPR blog
Tim Musson, Convener of the Law Society of Scotland’s Privacy Law Committee, explains why the General Data Protection Regulation (GDPR) is all-important for law firms.

GDPR and data protection training

Search upcoming training on data protection and the GDPR.

Book today

In this section

ICO resources and support

Use the ICO's toolkit of self assessments, training videos, stickers and postcards to help you improve and promote information rights practices in your organisation.

Read more

ICO's data protection guide

The ICO's guide is designed for DPOs and others who have day to day responsibility for data protection.

Read more

Data protection self assessment toolkit

Use the ICO's checklists to assess your compliance with the Data Protection Act and find out what you need to do.

Read more