Skip to main content

Data Protection and Freedom of Information (FOI)

The evolving landscape of data protection law presents challenges to both businesses and public sector bodies alike in their treatment of personal and special category data. The main challenge now is ensuring on-going compliance with the EU General Data Protection Regulation (GDPR) and the Irish implementing legislative measure the Data Protection Bill 2018, which creates a new regulatory framework for the enforcement of data protection laws in Ireland.

Areas of Practice:

  • Advising regulatory and commercial clients across a wide spectrum of industries of how to best apply the GDPR to their day to day activities
  • Specific GDPR compliance advice including providing in depth GAP analysis reports identifying risk areas and recommending mitigating factors and action points
  • GDPR training and improvement programmes
  • Drafting and negotiating Data Processor agreements
  • Advice regarding international data transfers, model clauses, binding corporate rules, etc.
  • Drafting of tailored and appropriate policies such as Data Protection Policies, Privacy Statements, Cookies Policies, CCTV policies and Retention Policies
  • Providing advice regarding Article 23 of the GDPR exemptions and drafting regulations
  • Dealing with data subject requests and applying limitations where possible
  • Advice regarding procedure to adopt in the event of a data breach and the obligations that arise
  • Data protection audits
  • How to deal with FOI requests and applying exemptions in relation to same

Recent activity

Our Data Protection and FOI team has developed a niche practice advising public sector, semi-state and statutory bodies. Clients include Medical Council, Competition and Consumer Protection Commission, Veterinary Council of Ireland, the Environmental Protection Agency and Pobal amongst others.