top of page

GDPR STATEMENT

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect in the European Union (EU) on May 25, 2018. GDPR is designed to protect the personal data and privacy of individuals within the EU and the European Economic Area (EEA), including the UK after the Brexit post, as well as regulate the export of personal data outside the EU and EEA.

KEY ASPECTS OF GDPR INCLUDE:

1. EXPANDED SCOPE

GDPR applies to all organisations that process personal data of individuals within the EU and EEA including the UK after the Brexit post, regardless of whether the organisation is based in the EU or not. It also applies to organisations outside the EU and EEA that offer goods or services to individuals in these regions or monitor their behaviour.

2. ENCHNANCED RIGHTS FOR CLIENTS

GDPR grants individuals greater control over their personal data by providing them with rights such as the right to access their data, the right to rectify inaccuracies, the right to erasure (also known as the right to be forgotten), and the right to data portability.

3. ACCOUNTABILITY AND GOVERANCE

GDPR requires organisations to implement measures to ensure compliance with data protection principles, such as data minimisation, purpose limitation, and data security. Organisations must also appoint a Data Protection Officer (DPO) if they process large amounts of personal data or engage in certain types of processing activities.

4. DATA BREACH NOTIFICATION

GDPR mandates that organisations report data breaches to the relevant supervisory authority within 72 hours of becoming aware of the breach, unless the breach is unlikely to result in a risk to the rights and freedoms of individuals.

5. SIGNIFICANT FINES FOR NON-COMPLIANCES

GDPR imposes substantial fines for non-compliance, with penalties of up to €20 million or 4% of global annual turnover, whichever is higher.

GDPR represents a significant overhaul of data protection regulations and has far-reaching implications for organisations that handle personal data. Compliance with GDPR requires a proactive approach to data protection, including implementing appropriate technical and organisational measures to safeguard personal data and respect individuals' privacy rights.

Our registration number with the ICO is ZB694262

WESTMINSTER ADVOCATE SERVICE
Available 24 hours, 7 days a week

Telephone: 0800 7 555 927

WhatsApp: 0800 7 555 258

HIGH RES WESTMINSTER ADVOCATE SERVICE (1).png
  • Instagram
  • Facebook
  • LinkedIn
LEGAL AND POLICY LINKS

Legal Information

Privacy Policy

GDPR Compliance

Cookie Policy

Terms & Conditions

Policies & Complaints

Consent & Confidentiality

Signapse Logo Blue (NEW).png
1656930180156_edited.jpg

Westminster Advocate Service Ltd | A UK First Advocate Service
Registered in England and Wales (Company No. 15603930)
Registered Office: 5 Brayford Square, London, E1 0SG
VAT No. 491 3149 86 · ICO Registration: ZB694262
Fully Insured · Serving clients UK-wide

Disclaimer: Westminster Advocate Service provides support, advocacy, and casework assistance to clients navigating public services and statutory processes. We are not a regulated law firm and do not offer legal advice under the Legal Services Act 2007. For matters requiring formal legal advice or representation, clients are referred to qualified solicitors or barristers.

bottom of page