Data Protection

Businesses handling personal data must adeptly navigate the intricate web of global data protection rules to establish trust and confidence in their data practices. In the United Kingdom, pivotal legislation governing the use of personal data includes the UK GDPR, the Data Protection Act 2018, and the Privacy and Electronic Communications Regulation. Additionally, businesses may encounter data protection compliance requirements in other jurisdictions, such as the EU GDPR. Navigating these rules can be complex, as many are subjective in nature.

Our seasoned data protection team specialises in guiding businesses through the intricacies of data protection rules. We collaborate closely with you to comprehend the unique aspects of your business, offering tailored and practical advice to align with your commercial circumstances. Secure your path to compliance with the expertise you need.

How we can help

Here at MBM Commercial we understand that every business and organisation will have different requirements and be impacted by data protection rules in different ways. Our data protection lawyers are on hand to help you to assess your current compliance and to identify areas within your organisation that require action to establish an effective data governance framework going forward.

This can be done through our two key “Data Matters” services which are detailed below.

1024 x 700 px Data
1024 x 700 px Commercial Ecommerce
1024 x 700 px Data
1024 x 700 px Commercial Ecommerce

Data Matters: Health Check

Sometimes it can be difficult to see how far you have come with data protection compliance matters, and where to focus on next. That’s why we offer a 3 step health check to look at your current privacy practices, identify any issues and make recommendations on necessary steps to take for compliance purposes. This helps you to keep on top of your data, mitigate the risk of non-compliance, and gives some peace of mind that you have taken steps to follow data protection rules.

The three stages process involves:


We have prepared a health check questionnaire designed to get as much information as we can from you about your current data protection practices, systems, and processes. You should complete this questionnaire with input from relevant internal teams and we can give you help and guidance where necessary.


Once complete, we will review the responses and have an in-depth discussion with you to highlighting good practices to keep going with and identify any gaps or risks.


Based on our assessment, we will provide you with high level recommendations on what needs to be done next to strengthen your data protection measures (if anything). These recommendations will follow a traffic light system - red to show non-compliance, amber to show potential improvements and green to show no issue at present. This makes it easy to see the biggest areas of risk and breaks things down for you to prioritise and manage going forward.


Our Data Matters: Health Check can be a stand alone service when you think it might be good to review practices, but is also included as an annual review within our Data Matters: Support Services.

Data Matters: Support Services

For those who are looking for ongoing data protection advice and support we have created our Support Services packages, with a choice of Basic, Standard or Enhanced. The breakdown of the different package levels is set out in the table below:

BASIC
Aimed at businesses with up to 20 employees, who do not require a named DPO or with low risk personal data
STANDARD
Aimed at businesses with up to 100 employees, who voluntarily choose to have a named DPO or with medium risk personal data or high volume of low risk personal data
ENHANCED
Aimed at businesses with over 100 employees, who legally require a named DPO or with high risk personal data
Initial Kick Off Call - Advice & Planning Session to kick start your journey
(up to 1 hour)
(up to 2 hours)
(up to 2 hours)
Quick Ask Service - unlimited short calls for guidance on general data protection matters (subject to fair use)
Access to template data protection policies and documentation and useful guides
Useful guides & video bank
Access to data protection seminars and workshops
Initial Health Check with annual reviews thereafter (with personalised action plan for next 12 months)
Regular progress call (to check on compliance journey and implementation of any recommendations)
Once per year
quarterly
monthly
Data Protection Awareness training for staff
(optional extra)
Once per year (online)
Recommend 2 sessions per year (either in person or online)
Specific Advice and Document Review – comprehensive and tailored advice and examination of data protection issues as they arise
access to wider team for advice and support
Up to 6 hours per month
Customised to suit your requirements
Data Protection Officer (DPO)
ICO Representation
Monthly Cost (ex VAT)
£450
£700
From £950
Initial Kick Off Call - Advice & Planning Session to kick start your journey
(up to 1 hour)
Quick Ask Service - unlimited short calls for guidance on general data protection matters (subject to fair use)
Access to template data protection policies and documentation and useful guides
Useful guides & video bank
Access to data protection seminars and workshops
Initial Health Check with annual reviews thereafter (with personalised action plan for next 12 months)
Regular progress call (to check on compliance journey and implementation of any recommendations)
Once per year
Data Protection Awareness training for staff
(optional extra)
Specific Advice and Document Review – comprehensive and tailored advice and examination of data protection issues as they arise
access to wider team for advice and support
Data Protection Officer (DPO)
ICO Representation
Monthly Cost (ex VAT)
£450
Initial Kick Off Call - Advice & Planning Session to kick start your journey
(up to 2 hours)
Quick Ask Service - unlimited short calls for guidance on general data protection matters (subject to fair use)
Access to template data protection policies and documentation and useful guides
Useful guides & video bank
Access to data protection seminars and workshops
Initial Health Check with annual reviews thereafter (with personalised action plan for next 12 months)
Regular progress call (to check on compliance journey and implementation of any recommendations)
quarterly
Data Protection Awareness training for staff
Once per year (online)
Specific Advice and Document Review – comprehensive and tailored advice and examination of data protection issues as they arise
Up to 6 hours per month
Data Protection Officer (DPO)
ICO Representation
Monthly Cost (ex VAT)
£700
Initial Kick Off Call - Advice & Planning Session to kick start your journey
(up to 2 hours)
Quick Ask Service - unlimited short calls for guidance on general data protection matters (subject to fair use)
Access to template data protection policies and documentation and useful guides
Useful guides & video bank
Access to data protection seminars and workshops
Initial Health Check with annual reviews thereafter (with personalised action plan for next 12 months)
Regular progress call (to check on compliance journey and implementation of any recommendations)
monthly
Data Protection Awareness training for staff
Recommend 2 sessions per year (either in person or online)
Specific Advice and Document Review – comprehensive and tailored advice and examination of data protection issues as they arise
Customised to suit your requirements
Data Protection Officer (DPO)
ICO Representation
Monthly Cost (ex VAT)
From £950

This service is intended as a telephone/email support service for data protection and privacy matters. The services does not include any substantial review or amendment of data protection documentation (except as stated above). We can offer additional services out with the packages above (including commercial contract work and Intellectual Property advice) at a reduced hourly rate for clients signed up to the Support Services packages.

Ruth has provided us with some incredibly helpful advice on data protection and contract matters. She has excellent technical expertise and her advice is clear and pragmatic. She made herself readily available as a source of guidance and support and was able to work to very tight deadlines to assist us on a number of urgent matters. A very safe pair of hands.

Contact our Data Protection Solicitors in Edinburgh & London Today

If you need guidance on whether your data protection practices are compliant and following best practice.
CONTACT

Useful Guides

Data Matters

Our flexible support solution to act as an extension of your internal team and assist with data protection matters.

Data Health Check

Information on our Data Health Check service, designed to give you insights into your current privacy practices and identify issues and steps needed to mitigate potential risks.

Connect with
us today

MBM Commercial will only use your personal information to answer your query and to provide the products and services you requested from us. You can unsubscribe from these communications at any time. For more on how we are committed to protecting and respecting your privacy, please see our Website Privacy Policy.
You must enable javascript to view this website