ICAEW.com works better with JavaScript enabled.

Guidance on data protection

Read our FAQs and the latest guidance on data protection and privacy including GDPR and the Data Protection Act..

Displaying 1-20 of 20 results
BUSINESS LAW Data Protection and Covid19 - implications for ICAEW members
  • 17 Apr 2020
  • PDF (147kb)
  • Business Law
Updated guidance from the ICO
BUSINESS LAW ICAEW KNOW-HOW GUIDE ICAEW Know How: Right to erasure
  • 16 Mar 2020
  • PDF (196kb)
  • Business Law
This guide summarises the general erasure obligations set out in GDPR, the exceptions available under GDPR and the DPA 2018 and provides practical interpretation of these in relation to various example service offerings that may be provided by ICAEW members.
BUSINESS LAW ICAEW KNOW-HOW GUIDE ICAEW Know-How: Personal data breaches
  • 01 Jan 2020
  • PDF (563kb)
  • Business Law Department
The Data Protection Act 2018 (DPA 2018) came into force on 25 May 2018 to replace the Data Protection Act 1998. It sits alongside the General Data Protection Regulation (GDPR). This guide is part of a series that explain some of the new or more difficult concepts introduced by the DPA 2018 and the GDPR.
BUSINESS LAW TECHNICAL RELEASE ICAEW Know-How: Data protection transparency
  • 10 Apr 2019
  • PDF (301kb)
  • Business Law Department
This guide summarises the general transparency obligations set out in GDPR, the exceptions available under GDPR and the DPA 2018 and provides practical interpretation of these in relation to various example service offerings that may be provided by ICAEW members.
Exclusive TECH FACULTY BUSINESS LAW Creating a password/pass phrase policy
  • 14 Aug 2018
  • Tech Faculty, Business Law Department
This example password/pass phrase policy could be used by an organisation to help protect client and employee data. It is jointly published by ICAEW's Business Law and Tech Faculty.
Exclusive TECHNICAL ADVISORY SERVICES TECHNICAL ADVISORY SERVICES HELPSHEET UK GDPR – Data processor or data controller?
  • 01 Feb 2021
  • Technical Advisory Services
Helpsheet issued by ICAEW’s Technical Advisory Service to help ICAEW members to make their own assessment whether they act as a data processor or data controller under the GDPR.
TECH FACULTY Do I have to encrypt personal data to comply with DPA 2018 (GDPR)?
  • 28 Jun 2019
  • IT Faculty
Find out whether you should consider encrypting your data, how encryption works in practice and what types of appropriate technical and organisational measures are common.
BUSINESS LAW What does the introduction of GDPR mean for accountants?
  • 15 May 2018
  • PDF (163kb)
These FAQs consider the impact of GDPR and how affects accountants, including what is now included in personal data, how to prove accountability, as well as when and how ‘consent’ can be used as a lawful basis for processing. It explains the new responsibilities of data processors under GDPR as well as the role and responsibilities of data controllers.
BUSINESS LAW TECH FACULTY GDPR and pension funds
  • 11 May 2018
  • PDF (165kb)
  • Business Law, Tech Faculty
This guide outlines the issues the General Data Protection Regulation (GDPR) raises for the trustees of pension funds, including their dealings with administrators and auditors. It is part of a series designed to answer the questions that members have been asking about the GDPR.
PROFESSIONAL STANDARDS DEPARTMENT GDPR - practical issues for insolvency practitioners and breach issues
  • 01 May 2018
  • PDF (251kb)
  • Professional Standards Department
FAQs for insolvency practitioners on the General Data Protection Regulations (GDPR).
Exclusive TECHNICAL ADVISORY SERVICES TECHNICAL ADVISORY SERVICES HELPSHEET UK GDPR – Client files
  • 17 Nov 2023
  • Technical Advisory Services
Helpsheet issued by ICAEW’s Technical Advisory Service to help ICAEW members to understand the requirements of the GDPR as it relates to client files applied to common situations experienced by a member.
What to do about GDPR – a checklist
  • 25 Apr 2018
Use this checklist to help your organisation to prepare for GDPR.
Exclusive TECHNICAL ADVISORY SERVICES TECHNICAL ADVISORY SERVICES HELPSHEET UK GDPR – Rights of an individual
  • 17 Nov 2023
  • Technical Advisory Services
Helpsheet issued by ICAEW’s Technical Advisory Service to help ICAEW members to understand the requirements of the GDPR in relation to the rights of an individual.
Exclusive TECHNICAL ADVISORY SERVICES TECHNICAL ADVISORY SERVICES HELPSHEET UK GDPR – Data mapping and documentation
  • 01 Feb 2021
  • Technical Advisory Services
Helpsheet issued by ICAEW’s Technical Advisory Service to help ICAEW members to understand how data mapping and documentation can assist in meeting the requirements of the GDPR.
Exclusive TECHNICAL ADVISORY SERVICES TECHNICAL ADVISORY SERVICES HELPSHEET UK GDPR – Data Breaches
  • 01 Feb 2021
  • Technical Advisory Services
Technical helpsheet issued to help ICAEW members understand the requirements of the GDPR in relation to a data breach. Detailed guidance is available from the Information Commissioner’s Office (ICO).
Exclusive TECHNICAL ADVISORY SERVICES TECHNICAL ADVISORY SERVICES HELPSHEET UK GDPR – Communicating safely with clients
  • 01 Feb 2021
  • Technical Advisory Services
Helpsheet issued by ICAEW’s Technical Advisory Service to help ICAEW members to understand the requirements of the GDPR in relation to communicating safely with clients.
Exclusive TECHNICAL ADVISORY SERVICES TECHNICAL ADVISORY SERVICES HELPSHEET UK GDPR – Lawful basis for processing
  • 17 Nov 2023
  • Technical Advisory Services
Helpsheet issued by ICAEW’s Technical Advisory Service to help ICAEW members to understand the requirements of the GDPR in relation to lawful basis for processing.
What to do about GDPR – a checklist
  • 09 May 2018
  • PDF (353kb)
Go through this checklist to make sure you're ready for the introduction of GDPR. The checklist includes: appointing someone senior to oversee the process, reviewing existing information and cyber security, mapping your data, reviewing contracts with clients, suppliers (anyone who processes your data) and employees, drafting data protection policies and procedures, and training staff.
BUSINESS LAW What is the GDPR?
  • 03 Jan 2018
  • PDF (482kb)
These FAQs give accountants an overview of GDPR. It includes questions on how it differs from the current data protection approach, who will have to comply with it and whether Brexit will have an effect. It also explains key terms and concepts, including the accountability principle, the responsibilities of data processors, what a data protection officer is, and issues around data privacy.
BUSINESS LAW Making SARs safely
  • 01 Oct 2015
  • Business Law
The Serious and Organised Crime Agency (SOCA) takes the need to protect the confidentiality of reporters very seriously. Access to Suspicious Activity Reports (SAR) information is conditional on compliance with Home Office issued guidance.
Displaying 1-20 of 20 results