Many celebrated the third anniversary of General Data Protection Regulation (GDPR) yesterday on 25 May.
Although enacted five years ago, GDPR came into force three years back in 2018.
GDPR acts as a lighthouse for the entire global policy-making scenarios and illuminates long-held privacy and data protection values by experts across the last decade.
It has acted as a catalyst for many jurisdictions around the world to draft and implement their own privacy and data protection legislations.
In fact, many lawyers believe that, irrespective of the jurisdiction, a privacy policy that is designed as per GDPR regulations help them to comply with most of the privacy regulations across the world.
As the GDPR celebrated it’s 3rd anniversary, a data security services software company called Egress conducted a survey with security leaders and consumers of the United Kingdom to understand their concerns around the privacy regulations and its impact on the businesses.
This survey brought to forefront some of the fears of the security leaders and brought to light the impact of regulations on the organisations.
Key highlights of the survey are:
- 90% of security leaders said they are concerned about class action by data subjects in the event of a serious data breach.
- 85% are concerned about regulatory fines imposed due to non-compliance with.
- Almost half (47%) of UK consumers say they’d join a class-action lawsuit against an organisation that had leaked their data.
- 91% of security leaders reported taking out cyber insurance, or upgrading their policy, as a result of GDPR.
- 67% of UK consumers are aware that they have the right to take legal action against an organisation that suffers a breach that exposes their personal data.
Although initially it was believed that only the hefty fines worry the companies, it is also the lawsuits, cost of insurance, damage to the reputation of the company that has become the talk amongst the data privacy circles.
The recent Google case that currently sits with the UK Supreme Court could make group claims ‘opt out’ instead of ‘opt in.’ That will inevitably mean every single customer affected would be entered into the group action. This should be a huge worry for companies.
When enforced back in 2018, GDPR set the tone of how use of personal data should be regulated. With the regulatory fines in place, there is also a lesser-known aspect: the right to take legal action against an organisation.
While cyber insurance might cover the financial damage caused by a data breach, it won’t help recover any reputational damage done.
As technology is advancing, data breaches are becoming inevitable. It’s now a matter of when and not if, but in many cases these could be prevented if experts are hired before establishing the business models.
The concerns expressed in the survey would need experts of the field to solve the big problems of the companies.
From getting legal experts to design the privacy policies at the inception, hiring compliance attorneys to ensure that the companies are compliant while undertaking the business and training the employees and affiliates as to how to handle the data- all steps of the companies would require legal help.
Even after the data breach has occurred, companies would need lawyers to negotiate with the authorities for huge fines and defend the companies against class action lawsuits in the courts.
Why does this opportunity exist now?
In today’s world, it is not oil, but data, which will determine the success and wealth of organizations.
Imagine social media platforms, e-commerce websites, food or grocery delivery apps, lifestyle apps (food, dating, fitness, health, etc.), password managers, a taxi-app, a subscription service, your smart watch or a smart weighing scale.
They are all collecting and analysing your data – sometimes to provide you services, at others to provide ads and recommendations.
Even traditional industries such as manufacturing, hospitality industry or brick-and-mortar shops are revolutionised by technology – even in these industries there are apps to track logistics, delivery, take orders from users, etc.
It is an understatement to say that data protection and privacy jobs are for those who want to work in the tech industry alone – virtually every modern industry is heavily using technology today.
That is why there is so much work in the data privacy field and why it is a good time for lawyers to cash this opportunity.
LawSikho is bringing a FREE 3-day online bootcamp on International career opportunities for lawyers in Data Protection, Privacy Management and Technology Law which begins in 3 days.
Have you saved the event in the calendar yet?
Add to Google Calendar Add to Yahoo Calendar
Date and Time:
29-31 May
6-9pm
If you haven’t registered yet, click here to register now:
What skills will you learn at this bootcamp
- How to take decisions on international data transfer to and from US, UK, Canada, EU, Singapore, Japan or other countries?
- How to draft a data processing contract/ addendum?
- How to draft a GDPR-compliant privacy policy for a website or mobile app and use it to get more assignments?
- How to conduct a GDPR impact assessment for a startup outside the European Union?
- How to draft a GDPR impact assessment report?
- How to create a GDPR project implementation plan?
- How to draft your agreement for engagement as a data protection officer?
FREE GIVEAWAYS
If you attend this bootcamp on all the 3 days then you will receive templates of well-drafted templates in the PDF format of the following documents:
Day 1 – Data Processing Agreement/Addendum
Day 2 – GDPR Compliant Privacy Policy
Day 3 – 10 templates
- Personal Data Analysis Form
- Personal Data Flow Map
- Personal Data Asset Inventory List
- List of 3rd Party Processing Providers
- GDPR Impact Assessment Report Template
- GDPR Project Implementation Plan Template
- Cookie Policy
- DPO Agreement Template
- Checklist of Responsibilities of a DPO
- Compliance Checklist under California Consumer Privacy Act
These templates will help you kickstart your career in the field of data privacy as a lawyer.
Moreover it is FREE and you can attend it from any part of the world.
Recordings of this bootcamp will not be available later so you have to attend it LIVE to make the most out of these sessions.
If you attend all 3 days you will also get a certificate of this bootcamp (conditions applied).
Invite your friends, colleagues and classmates to this bootcamp by sharing this link in your network: https://lawsikho.com/dataprotectionbootcamp
If you want to receive more such updates regarding technology law directly to your mobile phone you can join our WhatsApp and Telegram groups listed below:
Telegram: https://t.me/joinchat/UARS7wxD6w3H3jkK
WhatsApp:https://chat.whatsapp.com/GGaOY7hfb0l0OjmfEEvYDx
Students of Lawsikho courses regularly produce writing assignments and work on practical exercises as a part of their coursework and develop themselves in real-life practical skills.
LawSikho has created a telegram group for exchanging legal knowledge, referrals, and various opportunities. You can click on this link and join:
https://t.me/lawyerscommunity2
Follow us on Instagram and subscribe to our YouTube channel for more amazing legal content.