Lawtons solicitors can help you with a wide range of data protection related cases, including a GDPR breach where there may be criminal sanctions.

Data protection is regulated and enforced by the Information Commissioner’s Office (ICO) and the personal data that your business holds is governed by data protection laws.


The Data Protection Act 2018 

The Data Protection Act 2018 is the UK’s implementation of the General Data Protection Regulation (GDPR).


GDPR compliance

If your business or organisation processes personal data, you are likely to be affected by the General Data Protection Regulation (GDPR), which became effective in the UK in May 2018. 

GDPR introduced reforms to data protection in Europe, with huge penalties for those who do not comply. GDPR has led to some companies having their operations restricted and others being forced to close.

The consequences of a GDPR breach include: 

  • First party costs breaches must be reported to the ICO
  • Third party litigation individuals can claim against you if you misuse their personal data
  • Reputational damage
  • Directors and officers within your company facing legal action 
  • GDPR advisory firms facing professional negligence 


The consequences of a data breach

If you have suffered a data breach, you need to act immediately. GDPR requires you to notify the ICO within 72 hours of discovering a data breach.

If you don’t comply with GDPR you could face administrative fines of up to €20m or 4% of your worldwide annual turnover (whichever is higher). 

However, not all GDPR breaches lead to fines. There are other charges, and all can cause reputational damage which can have devastating consequences to your business. 

As well as fines, the ICO can also impose:

  • A warning and reprimand
  • A ban on all your data processing (temporary or permanent)
  • Restriction or erasure of data
  • A block on all data transfers to third countries


Is your business under investigation by the ICO?

If your business is under criminal investigation by the ICO our lawyers can use their extensive criminal experience to support you through the process. We understand that your personal reputation and the reputation of your business is of paramount importance. We are used to dealing with cases which could attract media attention sensitively to keep them out of the public eye.

Whether complaints about your business have been made to the ICO or you are under investigation by the ICO, we will advise on the best strategy to minimise the disruption to your business.


We can help

The Lawtons GDPR compliance and data protection team can provide you with expert legal advice. Our data protection team have the experience and knowledge to deal with the complex considerations that can transpire for the best possible conclusion.

Our lawyers are up-to-date with all the latest legal developments in data protection law and GDPR so that we can effectively defend your company against any claim.


Why choose Lawtons Solicitors? 

We are ranked as one of the leading criminal defence solicitors in London and around the surrounding home counties. As a result, we regularly receive referrals from other leading national and regional law firms which don’t specialise in criminal defence work. We have exceptional expertise in data protection law and keep up-to-the-minute with this fast-developing area.


Our benefits

With our help, you can:

✔ Limit data breaches quickly to prevent extensive damage

✔ Gain quick access to expert support and advice when you need it most

Contact us today.