The introduction of the General Data Protection Regulation (GDPR) comes into force on the 25th May 2018. It is an EU Regulation which replaces the Data Protection Act. The key purpose of GDPR is to ensure privacy; the regulation focusses on these two fundamental points:-
- Organisations who obtain personal data do not use it for any other purposes other than which it was provided for without the agreement of the person concerned and;
- Organisations who obtain personal data ensure that it is kept secure
GDPR provides a framework which is applicable to all organisations holding personal data. As a Solicitors practice, we already have a core duty to ensure that we keep our clients’ affairs confidential. We abide by and adhere to the strict codes of conduct stipulated by the Solicitors Regulation Authority which underpin the GDPR principles.
GDPR however focuses all organisations to consider how they deal with personal data and to take appropriate steps to protect that data.
We have tailored GDPR principles specifically in relation to how we as a solicitors practice hold your data.
Confidentiality of Data
Our client information and data is all confidential. The purpose for which we use the information you provide us with is to act in your legal matter. All reasonable steps are taken to ensure that such information is protected. Examples of this include:-
- Personal information or discussion about a case is not given out to anybody unless there is specific client consent
- There may be occasions when a client file is out of the office when attending a Court hearing for example or travelling to have an off-site meeting. In those circumstances, the file is properly and safely looked after so that nobody else comes into contact with it. Privacy Notice – GDPR – client – May 2018We may share your information with barristers instructed on your behalf, experts who are instructed on your behalf and with a law costs draftsperson. If your matter is legally aided, then your information will be shared with the Legal Aid Agency.
Access to Data
Your information, more specifically your file is kept for six years from the date the matter is concluded. Should you require access to your data other than in the normal course of your instructions to us, then please contact Mrs Pam Sanghera by email Pam@charlesstrachan.com and we shall respond to your request within 28 days.
Click the link to read this practice’s Privacy Notice which outlines client rights and this practice’s obligations in respect of GDPR. Privacy Notice – GDPR – client – May 2018