Confidentiality Flashcards
Who are data controllers?
Barristers are data controllers, and must comply with GDPR.
A breach of the Act or the GDPR is likely to constitute a breach of
- CD5
- CD10
Barristers are responsible for the conduct of those
who undertake work on their behalf and are advised to ensure that clerks and other chambers’ staff are aware of the need to handle and dispose of confidential material securely. Chambers must have appropriate systems for looking after confidential information.
Arrangements should cover:
- The handling and storage of confidential information. Papers should not be left where others can read them, and computers should be placed so that they cannot be overlooked,
- Suitable arrangements should be made for distributing papers and sending faxes and emails
- Particular care should be taken when using removable devices such as laptops, removable discs, CDs, USB memory sticks and PDAs. Such devices should be used to store only information needed for immediate business purposes, not for permanent storage. Information on them should be at least password protected and preferably encrypted.
- When no longer required, all confidential material must be disposed of securely
A barrister who breaches CD 6 could face
disciplinary action by the BSB. Barristers are data controllers, and must comply with GDPR.
A breach of GDPR is likely a breach of
Core Duty 10 and 5.
Papers should:
- not be left where others can read them, computers not place where they can be overlooked.
Computers should be
password protected
Papers should be stored…
in a way to minimise risk of unauthorised access.
- With laptops, USB memory sticks etc, such devices should be used to store information for immediate business purposes, not for permanent storage:
- Information should be password protected
- Encrypted
- Great care should be taken to make sure it is not lost or stolen.
When no longer required, the confidential material must be
disposed of securely, i.e. by shredding paper or permanently erasing.
