Category Archives: What we are being asked about

We get asked all sorts of questions about ethical, legal and responsible business.

We try to answer as many as possible in our Blog – please search for the category “What we are being asked about”.

If you can’t find the answer to your question remember “all you have to do is ask”.

How long does personal data have to be stored under the data protection law?

The short answer is no longer than necessary. Personal data will need to be retained for longer in some cases than in others. How long you retain different categories of personal data should be based on individual business needs. A … Continue reading

Posted in Crab Insight, Data Protection, Information Risks, What we are being asked about | Tagged , ,

What is personal data?

For the purposes of the Data Protection Act the quick definition is data which identifies a living individual. The Information Commissioners Office has put together a quick reference guide to help. Please click here to access the guide which will … Continue reading

Posted in Crimson Crab, Data Protection, Information Risks, What we are being asked about | Tagged ,

Do I need to appoint a Data Protection Officer to comply with the GDPR (General Data Protection Regulations)?

Not necessarily, but you must ensure that your organisation has sufficient staff and skills to discharge your obligations under the GDPR and so you can appoint a data protection officer (DPO) if that helps you meet this criteria. The GDPR … Continue reading

Posted in Data Protection, Information Risks, What we are being asked about | Tagged , , ,

I have to retain accounts for HMRC purposes, especially income tax, for any business / sole trader that has ceased trading within previous years, would they have to comply with data protection in either current or future forms?

It is important to remember that we are only talking about third party personal data under the data protection rules. If you are holding this as part of your responsibilities then you will need to comply with the Data Protection Act until … Continue reading

Posted in Crab Insight, Crimson Crab, Data Protection, Information Risks, What we are being asked about | Tagged , ,

If I cease trading before the new data protection laws come into play, do I have to comply, or does it only apply to active businesses / sole traders?

The General Data Protection Regulations (GDPR) came into force in May 2016. There is a two year lead in period to enable businesses to become familiar with the new regime and so the critical date is: 25th May 2018 The … Continue reading

Posted in Crab Insight, Crimson Crab, Data Protection, Information Risks, What we are being asked about | Tagged , ,

What is going to happen to EU laws after we leave the EU?

The government intends to implemnt the Great Repeal Bill to ensure their is continuence of laws. All the information you need to know is given in this article by the BBC.

Posted in F2 Business Huddle, What we are being asked about

What do I need in my business letterheads?

From a compliance perspective your clients are entitled to know the details of the legal entity that they are dealing with, especially if a business or trading name is being used. If the legal trading entity is a registered body there are … Continue reading

Posted in Crimson Crab, Governance, What we are being asked about | Tagged , ,

Can I do anything now to get ready for the changes in data protection laws?

Yes, it’s really important to get your house in order, ready for the new legislation. You will need to get to grips with the new rights of individuals, handling subject access requests, consent, data breaches, and maybe even designating a data … Continue reading

Posted in Crimson Crab, Data Protection, Information Risks, What we are being asked about | Tagged , ,

Are my terms and conditions suitable?

There are two main issues here: using terms and conditions that are not bespoke to your business; and using terms and conditions that are out of date. Your business’ terms and conditions should: underpin the provision of good, consistent customer service; … Continue reading

Posted in Crab Insight, Crimson Crab, Sales Risks, What we are being asked about | Tagged ,

How is the law on Data Protection changing?

The General Data Protection Regulations (GDPR) will apply in the UK from 25th May 2018. The government has confirmed that the UK’s decision to leave the EU will not affect their commencement. They apply to ‘controllers’ and ‘processors’. The controller … Continue reading

Posted in Crab Insight, Crimson Crab, Data Protection, Information Risks, What we are being asked about | Tagged ,