Michael Page Logo

Main menu

  • Home
  • NEW - Timesheet
  • Jobs+

    Searching for a job?

    • Job search
    • Submit your CV
    • Salary comparison tool
    • Income tax calculator
    • Featured employers

    Job search advice

    • Job search advice
    • Cover letter and CV advice
    • Growing your career
    • Job interview tips
    • Making your next career move
    • Global opportunities

    Search for jobs

  • Career advice+

    Career advice

    • Being happy at work
    • Career Chats - Podcast
    • Cover letter and CV advice
    • Graduate advice
    • Growing your career
    • Inclusivity Mapper
    • Job interview tips
    • Job search advice
    • Making your next career move
    • Tips for temps

    Salary centre

    • Salary centre
    • Salary advice
    • Salary tools

    Skills centre

    • Skills centre
    • Top 21 skills eBook
    • Top 100 skills tool
    • Skills Checker

    Popular articles

    • Popular articles
    • How to change careers during a pandemic
    • How to answer competency based interview questions
    • Optimising your CV for 2021
    • Top tips for working from home with others
    • Why are transferable skills so important?
  • Recruiting+

    Looking to hire?

    • Recruitment services
    • Request a call back
    • Reasons to partner with us
    • Advertising for candidate attraction
    • Salary benchmarking tool
    • Submit a job spec
    • Client testimonials

    Outsourcing/project recruitment

    • Outsourcing/project recruitment
    • Managed service provisions
    • Project solutions
    • Advisory
    • Outplacement/career transition
    • Future-proofing your talent pool in an uncertain market

    Insights

    • Webinars & events
    • Market analysis
    • Salary Guides
    • Webinars & events

    Management advice

    • Management advice
    • Attraction and recruitment
    • Development and retention
    • Diversity and Inclusion Centre
    • GDPR
    • IR35
    • Run your recruitment processes remotely
    • Upskilling, reskilling, and talent onboarding Ebook

    Recruitment expertise

    • Recruitment expertise
    • Discipline expertise
    • Industry expertise

    Request a call back

  • Work for us+

    Work for us

    • Work for us
    • Why choose us?
    • Your role here
    • Use your skills
    • Apply now
  • About+

    About us

    • About Michael Page
    • Recruitment services
    • News & research
    • Client testimonials
    • Reviews
  • Contact+

    Contact us

    • contact us
    • Find your local office
    • Request a call back
    • Submit a job spec
    • Submit CV
    • Timesheet portal
    • Feedback
  • Job match
Register / Sign in
Saved jobs (0)
Saved jobs (0)
Register / Sign in
Login or Sign up
Search for a job

Michael Page Legal

Specialists in legal recruitment.

You are here

Home>Our expertise>Legal>How have legal teams been preparing for the GDPR?

How have legal teams been preparing for the GDPR?

How have legal teams been preparing for the GDPR?

The GDPR, coming into effect this month has been a topic of hot debate for some time now. There is speculation as to its potential impacts on how organisations operate, and within those companies, how different business functions will react and adapt. There are obvious consequences for IT infrastructure teams and marketing operations. Legal teams will also be impacted as compliance efforts ramp up and organisations strive to both understand legal implications of the new regulations and put programmes in place to ensure compliance.
 
With this in mind, we spoke to Neil Brown whose legal firm decoded:Legal specialises in advising telecoms, internet, and technology companies. Neil was head of privacy at Vodafone for many years, and now provides privacy advice to a broad range of businesses.
 

Are structural changes necessary?

First of all, apart from ensuring that the relevant staff are up to date with the GDPR and able to advise on it, there is unlikely to be the need for any significant structural or organisational changes. One area where firms may be looking to bring people in however is in the Data Protection Officer role (DPO). In the last year we have certainly seen an increase in the number of DPO roles we are briefed on, most of which featured GDPR prominently in the job description.
 
These DPOs will be expected to manage the relationship with the regulators and decide on when and how to report any breaches. Firms which routinely handle special categories of data, such as health related data, or those which process data relating to criminal convictions, will need to check the framework under which they handle this, to ascertain whether they will need to appoint their own data protection officer.
 
Aside from working with clients seeking advice on new processing clauses, or on the privacy implications of their operations, some firms may want to offer the facility to act as an outsourced data protection officer. Given the regulatory framework for solicitors, firms considering this option will need to ensure that they can meet both the requirements of the GDPD and their professional regulatory obligations, as it can be difficult to square these off.
 

How can business leaders in the legal sector ensure that their teams are equipped?

Here at Michael Page Legal, many of our clients have utilised contractors to assist with process reviews and GAP analysis in order to put into place a framework for data compliance. Business analysts, programme managers and change professionals, have all been in high demand for some time now and have often proved invaluable in this process. Depending on requirements, we have seen clients employ single independent contractors as well as larger consultancies.
 
A whole host of skills are required for effective GDPR compliance. This does not necessarily mean the need to bring in a host tech savvy people and data professionals. Each firm will have different needs dependent on the type and volume of work they undertake. There are however some areas which are worth your consideration. Neil Brown gives us more on a selection of skills and competencies which may be worth thinking about:
 
Information Security – Issues such as the sharing of data and documentation with clients require a more strategic approach. Email is inherently insecure and firms which don’t already, would be highly advised to look into encryption. Security professionals will have strong capability in this area and it is certainly something to be considered. This will drastically reduce the ability of a hacker to view what is being shared. Secure file transfer platforms may also be a good option. Finding a combination of security and usability, while maintaining a high level of service to your clients can be a challenge, so looking into skills in this area can make a difference.
 
Auditing – Ensuring that a firm is keeping on top of regulatory requirements, and crucially that it can evidence this, is as important as ever. In a climate of changing regulation, having someone with strong auditing experience, who understands how to take a methodical, structured approach to assessment and documentation, can be a real boon.
 
Communications experts – bearing in mind that privacy notices and data subject facing communications need to be concise and intelligible, it may not be that a lawyer is the best placed to get the message across. Dense paragraphs of legalese are unlikely to cut the mustard, and thinking carefully about your communications from a client experience perspective will be increasingly important.
 
It is essential to consider how secure the data you process is. However, this is not exclusive to databases, I regularly see lawyers working with privileged documents in inappropriate settings; on trains or in cafes for example. It can be as simple as speaking too loudly on a phone in a public place. Simple things such as training lawyers to be aware of their surroundings might be the most important step you take in ensuring your organisation is mitigating risk.
 
If you have any questions or would like to explore resourcing options please get in touch with data protection and compliance recruitment specialist Heather Ninnes, Business Manager at Michael Page Legal.

Legal

Legal

  • About us
  • Salary comparison tool
  • Jobs in Scotland

Insights and advice

Insights and advice

  • How to conduct an effective hiring process
  • Addressing the skills gap in the legal sector
  • What to look for when recruiting in-house counsel talent

News and updates

News and updates

  • Meet Britain’s Future Board
  • PageGroup ladies event – From the boardroom to the shop floor
  • Autumn In House Lawyer Seminars with Squire Patton Boggs - Manchester
View more...
Michael Page Logo
  • Follow us on FacebookFollow us on Facebook
  • Follow us on LinkedInFollow us on LinkedIn
  • Follow us on TwitterFollow us on Twitter
  • Watch us on YouTubeWatch us on YouTube

General

  • Site map
  • Site terms
  • Work for us
  • Feedback
  • Accessibility
  • Diversity & Inclusion
  • Employee rights
  • Cookies
  • Modern Slavery Statement
  • Privacy policy
  • Complaints policy
  • Country/Region

About Michael Page

  • Investors site
  • PageGroup corporate site
  • Page Executive
  • Page Personnel
  • Page Talent
  • Page Outsourcing

Search for jobs

  • Accounting
  • Audit & Advisory
  • Banking & Financial Services
  • Compliance
  • Construction
  • Consultancy, Strategy & Change
  • Digital
  • Engineering & Manufacturing
  • Executive Search
  • Facilities Management
  • Fashion
  • Health, Safety & Environment
  • Healthcare
  • Hospitality & Leisure
  • Human Resources
  • Insurance
  • Legal
  • Life Sciences
  • Logistics
  • Marketing & Agency
  • Not for Profit
  • Policy
  • Procurement & Supply Chain
  • Property
  • Public Sector
  • Retail
  • Sales
  • Tax
  • Technology
  • Treasury

Mobile applications

Download Our App Download Our App

Employers

  • Request a call back
  • Submit a job spec
  • Our offices

Awards

Reviews

Feefo logo

 

Accreditation

Michael Page is part of the PageGroup. Michael Page is a trading name of Michael Page International Recruitment Limited. Registered in England No. 04130921 Registered Office:
Page House, 1 Dashwood Lang Road, Addlestone, Weybridge, Surrey, KT15 2QW