data protection & information law

Providing practical and detailed advice on data protection and freedom of information law.

Mobile with lock icon

Data protection advice line

Bespoke, cost-effective data protection advice at your fingertips.

Handshake

Innovative and pragmatic

We pride ourselves in offering clear pragmatic advice which helps businesses feel confident in their data handling. 

Avatar icon in hand

Holistic solutions-based approach

Our solicitors are keen to understand your organisation, taking the time to develop a relationship with you.

Our data protection solicitors

Our team of expert data protection and information law solicitors are passionate about helping organisations achieve compliance, advising on all aspects of data protection law.

As well as data protection law, we also work closely with public authorities to advise on requests received under the Freedom of Information Act 2000 (FOI) or Environmental Information Regulations 2004 (EIR).

Contact us

What is a data protection solicitor?

A data protection solicitor is experienced in advising on the full range of data protection and information law and can help your business achieve and maintain compliance.

We offer a broad range of services to our clients, from auditing your organisation to highlight and address key areas of risk to assisting with complex subject access requests.

What is data protection law?

Data protection law sets out key provisions about how organisations can collect, store and process individual’s personal data. Compliance is enforced by the UK’s regulatory body the Information Commissioner’s Office (ICO).

The ICO has the authority to issue enforcement notices and fines of up to £17.5 million or 4% of the total annual worldwide turnover in the preceding financial year, whichever is higher for breaches of non-compliance.

Information law covers requests for information made under the FOI or EIR to public authorities. Compliance with these requests are also regulated by the ICO.  

What can our data protection and information law solicitors do for you?

Our data protection solicitors work closely with clients to understand how they collect, store and process personal data.

We pride ourselves in offering clear pragmatic advice which helps businesses feel confident in their data handling. 

Meet the team
  1. Practical advice

    We understand that navigating the UK’s data protection law regime can be complex. We aim to provide advice which is pragmatic and always has our client’s objectives in mind.

  2. In-house support

    Whilst the changes to data protection law have created many benefits for data subjects we recognise that often this has resulted in increased workloads for organisations particularly those receiving high numbers of Subject Access Requests (SAR), Freedom of Information Requests (FOI), and Environmental Information Regulations Requests (EIR).  

    We are able to offer in-house support at a range of levels to provide assistance with handling such requests. Where there is a significant backlog, we are able to provide an action plan to assist with tackling these and help organisations to ensure that procedures are in place to avoid reoccurrence.

  3. Expertise

    Our information law solicitors are experts in their field. The members of our team have extensive experience in advising on all aspects of data protection law, FOI and EIR.

Our data protection and information law services

Our solicitors are keen to understand your organisation and its needs, which is why we take time to develop a relationship with you.

This helps us to understand what personal data or information you collect as well as your processing activities. This knowledge enables us to ensure that our legal advice always has your needs as an organisation in mind. 

  1. Drafting policies and procedures

    As an organisation, it is vital that you ensure your policies and procedures are compliant and updated frequently. We regularly review, amend and draft procedures for our clients across the whole breadth of information law.

    From drafting data protection policies to data breach procedures - our team ensures that these are tailored to your organisation’s needs.

  2. Drafting privacy notices

    The team specialises in drafting a number of privacy notices for a range of data subjects including customers, employees, candidates, and pupils.

    We are also able to review and update privacy notices to ensure their compliance.

  3. Subject access requests

    We understand that subject access requests can be time-consuming and place a drain on resources. Our data protection team are skilled at handling such requests for our clients.

    We can assist with the full process, including advising on whether the request is complex, search parameters, reviewing the information, and undertaking redactions.

  4. Freedom of information requests

    The team has extensive expertise in handling complex FOI and EIR requests.

    We work closely with public authorities to advise whether the information needs to be released and assist with drafting responses to requesters.

  5. Data protection impact assessments

    We are able to advise on whether a proposed processing activity gives rise to the need to complete a data protection impact assessment.

    We are also able to assist with evaluating whether your data processing will result in a high risk to individuals and whether you will be required to consult the ICO.

  6. Data breaches

    Unfortunately, data breaches occur in all organisations. We assist our clients with understanding if a breach has occurred as well as whether to report it to the ICO and the individuals affected.

    Where required to do so, we assist our clients with the reporting process.

  7. Marketing

    Marketing is an area which is heavily regulated under UK data protection law.

    Our solicitors work closely with clients to ensure that their marketing strategies are compliant.

  8. Data protection agreements

    From data processing agreements between controllers and processors to data sharing agreements between controllers, we can review and draft a broad range of data protection agreements.

  9. Website compliance

    As websites are often the first port of call for customers, we work closely with clients to ensure their compliance with UK GDPR and PECR. We assist clients by ensuring that their consent procedures for setting cookies are compliant with The Privacy and Electronic Communications (EC Directive) Regulations 2003 (PECR).

    Our team of data protection solicitors are also experienced in drafting website privacy notices and cookie policies.

Tailored information law packages

We offer a number of data protection packages to support your organisation. Our products are designed to give you the right level of support at each stage of your organisation’s compliance journey. 

We offer a data audit for organisations looking to improve compliance as well as a DPO Advice Line for day-to-day support. Our services are tailored to your needs, and we spend time working with you to ensure you have the right type of support.

  1. Data protection audit

    Our team of data protection solicitors work closely with organisations to evaluate and improve their level of data protection compliance. Our audit process assesses an organisation’s current level of data protection compliance before applying a staged procedure to address key areas of concern.  

    We work closely with key stakeholders in the organisation to understand the personal data being collected and ensure that its processing is compliant with data protection law.  

    Each audit is uniquely tailored to each client and upfront pricing is provided at the outset to ensure complete transparency.

  2. DPO advice line

    Our information law advice line gives you direct access to experienced information law solicitors.

    We advise on the full range of information law and offer a fixed fee package which supports Data Protection Officers by providing practical, responsive and clear advice whenever you need it.

    Find out more
  3. Data protection document package

    We offer a full suite of data protection documents which contain policies, procedures, and templates.

    The documents come complete with comprehensive drafting notes to assist with their completion.

    Download our brochure
  4. Data protection training

    We offer interactive training sessions (delivered either in person or remotely) covering a range of information law topics. As well as offering bespoke training, we also offer core training sessions which consist of:  

    • Freedom of Information (FOI) training 

    • Subject Access Requests (SAR) training

    • HR training 

    • Data Protection Officer (DPO) training

    • Data protection training for senior members of staff

Quick contact form

Submit an enquiry and one of our team of experts will be in touch as soon as possible to discuss your needs.

Or call the data protection and information law team on 01472 265998

Senior Solicitor Emma Hastings-Bray 01472 262639 Grimsby
Please select an office...
This website has implemented reCAPTCHA v3 and your use of reCAPTCHA v3 is subject to the Google Privacy Policy and Terms of Use.

Related news

Back to top