View larger image

Data Protection Toolkit

2nd Edition
Alison Matthews
Availability: Published

Processing personal data is fundamental to the work of legal businesses and is subject to both statutory and professional regulation.

The Data Protection Toolkit, 2nd edition offers updated advice on how to keep your practice compliant with the EU General Data Protection Regulation, which became law in the UK as the Data Protection Act in May 2018.

This new edition contains a range of forms, precedents and templates covering all aspects of data protection within a legal practice. It will enable you to put into place effective data protection policies that will help you demonstrate to the SRA and the ICO that you comply with all the requirements in this area.

It also offers practical guidance on:

  • setting up systems
  • managing risk
  • client inception
  • ongoing monitoring
  • data security and sharing
  • subject access requests
  • complaints handling
  • training and monitoring compliance.

The documents are also provided on the accompanying CD-ROM for easy customisation.

The Data Protection Toolkit, 2nd edition is a comprehensive guide that covers data protection requirements for all staff, including COLPs and COFAs.


"This toolkit aims to assist solicitors in implementing the procedures and systems which will demonstrate their compliance with their regulatory obligations. Produced in handy paperback format, it will work wonderfully as an everyday reference source, especially for compliance officers for legal practice (COLPs) and compliance officers for finance and administration (COFAs)."

Phillip Taylor MBE and Elizabeth Taylor of Richmond Green Chambers, review of previous edition.


  1. Part 1: Setting the scene:
  2. 1. Setting up systems
  3. 2. Assessing the risk to the legal practice
  5. Part 2: Client interface:
  6. 3. Client inception
  7. 4. Ongoing monitoring
  8. 5. Data security
  9. 6. Data sharing
  10. 7. Data subject rights
  11. 8. Complaints handling
  12. 9. Data retention and deletion
  14. Part 3: Making sure it all works:
  15. 10: Training
  16. 11. Monitoring and auditing compliance
  18. Annex 11A: Procedure for monitoring compliance
  19. Annex 11B: Compliance monitoring form
  20. Annex 11C: DP officer report to management

About the Author

Alison Matthews is Director of Quality & Risk at Shoosmiths. She has previously worked as a compliance consultant and lectured on the subject. Alison chaired the Law Society’s Money Laundering Task Force for 4 years and is also the author of Law Society’s Anti-Money Laundering Toolkit, 2nd edition.




Regulation and compliance


April 2019


Law Society




Paperback + CD
192 Pages