Small accountancy practices, like any other SME will need to ensure they have written policies and procedures in place on time to implement the requirements of the GDPR by 25 May.

Here are some more ideas for some practical implementation steps firms may be able to take.

Privacy notices

Privacy notices are used to inform individuals that you hold their data, how, why, where it’s held and their rights. You can provide this information in various ways e.g.:

  • by updating employment contracts;
  • updating the terms in letters of engagement;
  • updating your website; or
  • any other method you feel is appropriate e.g. client newsletters.

Guidelines from the Data Protection Commissioner require privacy notices to be clear, concise, and easily accessible.

Current wording in the above documents is likely to refer to The Data Protection Acts 1988 and 2013 and is unlikely to comply with the new requirements and will require revision.

For more practical hints and tips on data protection and to get you started on your preparations for 25 May, please come to one of our series of courses on the ‘General Data Protection Regulation – What Accountants Need to Know’ at the Talbot Hotel, Stillorgan, County Dublin on one of the following dates:

Wednesday 18 April 2018 2pm to 5pm

Wednesday 30 May 10am to 1pm

For more information on our other upcoming courses click here