Skip to content
Law Society of Scotland
Search
Find a Solicitor
Contact us
About us
Sign in
Search
Find a Solicitor
Contact us
About us
Sign in
  • For members

    • For members

    • CPD & Training

    • Membership and fees

    • Rules and guidance

    • Regulation and compliance

    • Journal

    • Business support

    • Career growth

    • Member benefits

    • Professional support

    • Lawscot Wellbeing

    • Lawscot Sustainability

  • News and events

    • News and events

    • Law Society news

    • Blogs & opinions

    • CPD & Training

    • Events

  • Qualifying and education

    • Qualifying and education

    • Qualifying as a Scottish solicitor

    • Career support and advice

    • Our work with schools

    • Lawscot Foundation

    • Funding your education

    • Social mobility

  • Research and policy

    • Research and policy

    • Research

    • Influencing the law and policy

    • Equality and diversity

    • Our international work

    • Legal Services Review

    • Meet the Policy team

  • For the public

    • For the public

    • What solicitors can do for you

    • Making a complaint

    • Client protection

    • Find a Solicitor

    • Frequently asked questions

    • Your Scottish solicitor

  • About us

    • About us

    • Contact us

    • Who we are

    • Our strategy, reports and plans

    • Help and advice

    • Our standards

    • Work with us

    • Our logo and branding

    • Equality and diversity

GDPR

  1. Home
  2. For members
  3. Business support
  4. GDPR - The General Data Protection Regulation

Our GDPR guide for law firms provides a step by step guide to understanding GDPR. The requirements under the GDPR are broadly similar to the Data Protection Act 1998 (DPA) but they give additional weight to the rights of the subjects of any data collection, most obviously, in terms of penalties.

You can find the official text of the General Data Protection Regulation at eur-lex.europa.eu.

GDPR guide for law firms

Data protection regulations from the perspective of a legal practice

Read more about GDPR guide for law firms

Law Society blogs

We're publishing a series of blogs from experts, including members of our Privacy Law Committee, about the key issues and considerations you should take into account.

Data Protection Act 2018 and GDPR

Laura Irvine, partner at Davidson Chalmers Stewart solicitors and author of our 'Guide to GDPR', discusses how change in the final wording of the Data Protection Act 2018 will help solicitors when dealing with third party subject access requests.

Changes to the guidance on ownership and destruction of files

Fiona J Robb, Director of Professional Practice, talks about changes to the guidance on ownership and destruction of files in anticipation of the imminent arrival of GDPR.

GDPR privacy notices

Angus MacLeod, partner at Wright, Johnston & Mackenzie LLP, explains what you should put in a privacy notice and when you need to give one.

Whats new for Controllers and Processors under GDPR

Tamasin Dorosti, recent secondee at our Brussels office, explains the new compliance obligations for 'controllers' and 'processors' under GDPR.

GDPR privacy by design and default

Deborah Dillon, EU Data Privacy and GDPR Executive Consultant at Atos, explains 'privacy by design' and 'privacy by default' and what this means for your organisation.

GDPR new year new guidance

Tim Musson, Convener of the Law Society of Scotland’s Privacy Law Committee, gives us an update on the latest General Data Protection Regulation (GDPR) guidance.

GDPR data protection officers

Dr Kenneth Meechan, member of the Law Society of Scotland’s Privacy Law Committee, explains the new rules on data protection officers and sets out some important tasks which all law firms should consider.

GDPR legal basis and why it matters

Carolyn Thurston Smith, policy executive at the Law Society of Scotland, explains the legal bases in article 6 of the General Data Protection Regulation (GDPR).

GDPR changes to consent

Domhnall Dods, regulatory solicitor and GDPR expert at Towerhouse and member of the Law Society’s Privacy Law Committee, explains the changes to rules around consent in the General Data Protection Regulation (GDPR).

GDPR Personal data breaches

Anna Drozd, policy adviser on professional issues at our Brussels Office, explains what personal data breaches are and how to report them under the GDPR.

GDPR blog

Tim Musson, Convener of the Law Society of Scotland’s Privacy Law Committee, explains why the General Data Protection Regulation (GDPR) is all-important for law firms.

GDPR and data protection training

Search upcoming training on data protection and the GDPR.

Book today about GDPR and data protection training
Add To Favorites

Additional

  • Business support

In this section

  • GDPR - The General Data Protection Regulation
  • Guide to GDPR

ICO resources and support

Use the ICO's toolkit of self assessments, training videos, stickers and postcards to help you improve and promote information rights practices in your organisation.

Read more about ICO resources and support

ICO's data protection guide

The ICO's guide is designed for DPOs and others who have day to day responsibility for data protection.

Read more about ICO's data protection guide

Data protection self assessment toolkit

Use the ICO's checklists to assess your compliance with the Data Protection Act and find out what you need to do.

Read more about Data protection self assessment toolkit
Law Society of Scotland
Atria One, 144 Morrison Street
Edinburgh
EH3 8EX
If you’re looking for a solicitor, visit FindaSolicitor.scot
T: +44(0) 131 226 7411
E: lawscot@lawscot.org.uk
About us
  • Contact us
  • Who we are
  • Strategy reports plans
  • Help and advice
  • Our standards
  • Work with us
Useful links
  • Find a Solicitor
  • Sign in
  • CPD & Training
  • Rules and guidance
  • Website terms and conditions
Law Society of Scotland | © 2025
Made by Gecko Agency Limited