0191 232 0283
0191 261 6956
info@srflegal.co.uk
Follow us
    • About
      • SRF TODAY
      • OUR TEAM
      • CAREERS
      • CONTACT & LOCATIONS
    • Commercial
      • Corporate and Commercial
      • Commercial Property
      • Dispute Resolution
      • Debt Recovery
      • Employment Law
      • Insolvency
      • Regulation and Financial Crime
    • Private Client
      • Family Law
      • Wills, Trusts and Probate
      • Buying and Selling Property
    • News & Events
      • FIRM NEWS
      • EVENTS & SEMINARS
      • SRF NEST
    1. Home
    2. News
    3. Company Directors Oblivious to New Data Protection Rules

    Company Directors Oblivious to New Data Protection Rules


    Published on: 15th November 2017

    A survey carried out by the Institute of Directors (IoD) has suggested that almost a third of company directors have not heard of the new General Data Protection Regulation (GDPR).

    The IoD surveyed almost 900 businesses and found that four in ten company directors don’t know if their business will be affected by the new data protection rules. It also discovered that half of directors have not discussed GDPR compliance arrangements with individuals with whom they share data.  

    The New Regulation

    The General Data Protection Regulation (GDPR) comes into force in May 2018, this will see a major overhaul of the data protection rules and will have a significant impact for all companies who deal with data in any form. The new regulation includes more rights for individuals and provisions which promote accountability and governance, with a view to minimising the occurrence of breaches.

    Whilst the GDPR is reflective of the existing data protection laws, it is more onerous and also gives the Information Commissioner greater enforcement powers. In particular, businesses who fail to comply with the GDPR will face fines of up to €20 million, or up to 4% of total annual worldwide revenue, whichever is the greater.

    Commenting on the findings, Jamie Kerr, Head of External Affairs at the IoD, said:

    ‘It was clear from the outset that this would be a mammoth task for small and large businesses alike, but the scale of the challenge has not necessarily translated into preparedness for the new regulation, despite the huge costs of non-compliance.

    It is crucial everyone understands just how big this regulatory change will be for business leaders over the next few months.’

    Director’s Responsibilities

    The purpose of the law is to protect individual privacy, but its effects on board-level corporate governance are extensive. This is because the board is held responsible for the implementation of GDPR compliant policies and for auditing them.

    In addition to large fines, damage to a corporate’s reputation could also be considerable. Directors may also be held personally liable and, under certain circumstances, can face criminal charges for non-compliance. Even if no criminal charge is made, a director’s inability to ensure protection of personal data may be considered a failure to exercise reasonable care and diligence, and that could result in action for damages, termination or disqualification.

    Given the significant complexity and number of rules that GDPR imposes on boards, we advise businesses to not wait to allocate budget, select the Data Protection Officer, and begin taking data inventory, along with planning all the structural changes that compliance may require.

    If you are a director and require advice on compliance with the GDPR, please do not hesitate to contact; Andrew Swan - Head of Regulation and Financial Crime at Short, Richardson & Forth at as@srflegal.co.uk or Sheila Ramshaw - Specialist in Regulation at Sheila.ramshaw@srflegal.co.uk or 0191 232 0283.

    MORE

    • The FCA proposes tighter controls over Appointed Representatives (ARs)
    • Landlords and CVAs – CVAs triumph again
    • What is a Section 166 Notice from the FCA?
    • ICO calls businesses into action for the Children’s Code
    • Administrators’ duty of care in company sales
    • Breach of confidence by administrators
    • Liability of jointly appointed administrators
    • Telephone maintenance
    • The Financial Conduct Authority are looking to refuse my application for authorisation, what should I do?
    • ICO enforcement during Coronavirus public health emergency
    • Property possession: how do you proceed post-pandemic?
    • Losing the right to terminate supply: the impact of the Corporate Governance and Insolvency Act 2020
    • Employee claims in liquidation
    • Speeding during lockdown – the consequences of a heavy right foot!
    • Furlough Fraud – to confess or not confess: that is the question?
    • Finding The Time to Recap on Inheritance Tax Allowances
    • Coronavirus Causing A Surge in Wills and Powers of Attorney: Keeping Safe While Getting Affairs In Order And An Appreciation For Our NHS
    • The first ever compensation order
    • Driving and ‘using’ mobile phones – an update
    • Uber’s Huge Data Breach Hush-Up
    • Company Directors Oblivious to New Data Protection Rules
    • Warning for workers following data protection prosecution
    • Financial Crime Response Reforms to be Announced by end of 2017
    • Charities - Still Chugging Along?
    • Constructive dismissal explained - Podcast
    • ICO warns companies about the costly consequences of making nuisance calls
    • Charities - New Challenges New Opportunities
    • Breast Cancer Charity is first to be given official warning from the charity commission
    • Tata Fined £1m After Staff Exposed to Toxic Gas
    • Talk Talk Fined by ICO Again....
    • Claims Management Regulator Annual Report Summary 2016 - 2017
    • A New Data Protection Bill: Planned Reforms
    • Supreme Court delivers ground breaking decision on ET fees
    • New Regulator, New Preference Service, New Rules!
    • New Support Lawyer Joins Regulatory Law Department
    • ICO Publishes International Strategy
    • General Data Protection Regulation 2016: could your failures to protect data leave your company insolvent?
    • Signs of flexibility in EU markets?
    • Ransomware. Are you the victim or the perpetrator?
    • Transfer of claims management regulation – are you FCA ready?
    • The Best Possible Deal
    • Lobbying Act 2014: are you aware of its impact?
    • Deal or no Deal
    • Leap into the unknown
    • Newcastle law firm form specialist team
    • Newcastle University
    • Brexington Post - Issue 3
    • Supreme Court Ruling
    • Average Speed Camera Myth Buster
    • 12 days (and perils) of Christmas
    • Rising Star : Alexandra Withers
    • SRF Appoints Christine McVay as Head of its Family Law Division

    CONTACT US

  • 4 Mosley Street
    Newcastle upon Tyne NE1 1DE
    Tel: 0191 232 0283 Fax: 0191 261 6956
    Email: info@srflegal.co.uk
    DX: 61037 Newcastle

    Short Richardson and Forth Solicitors Limited is a private limited company registered in England and Wales under company No. 10572065, authorised and regulated by the Solicitors Regulation Authority No. 637150.

    Short Richardson and Forth Solicitors Limited is a private limited company constituted and run in accordance with the provisions of the Companies Act 2006. The term “partner” has been used to denote individual senior solicitors employed by Short Richardson and Forth Solicitors Limited.

    Website Privacy Policy

    Complaints Procedure

    • ABOUT
    • SRF Today
    • Our Team
    • Careers
    • Contacts & Location
    • COMMERCIAL
    • Corporate and Commercial
    • Commercial Property
    • Dispute Resolution
    • Debt Recovery
    • Employment Law
    • Insolvency
    • Regulation and Financial Crime
    • PRIVATE CLIENTS
    • Family Law
    • Wills, Trusts and Probate
    • Buying and Selling Property
    • NEWS & EVENTS
    • Firm News
    • Events & Seminars
    • SRF Nest