Recent research has indicated that three-quarters of law firms are unprepared for the soon to be implemented GDPR.
According to the survey conducted by CenturyLink, a fifth of firms claimed that they had experienced an attempted cyber attack, with under a third of IT directors stating that they felt fully-compliant with the relevant legislation.
This is alarming when considering the importance and anticipated impact of the legislation due to be implemented next year. In order to avoid a potential fine of up to €20 million, CenturyLink highlighted the need for firms to prepare for the general data protection regulation, and ensure that their firm is compliant prior to it coming into effect.
Also mentioned in the report was the proportion of firms who are non-compliant with current data protection regulation, cited as up to two-thirds.
As well as a possible punishment from the Solicitors Regulation Authority, this could also result in a fine from the Information Commissioner, further highlighting the need for firms to regularly review their existing compliance. Even if all processes and procedures are fully up to date, frequent reviews promote a positive working culture and ensure that no change is missed.
Paul Saunders, MD of Legal Eye Compliance comments “This report backs up our figures which show only 11% of law firms are ready for GDPR. Law firms shouldn’t be frightened of GDPR, and if they are unsure of how to prepare for GDPR they should call in expert help.”
