- Privacy & Data Protection Logo -
Privacy & Data Protection

 
- About Us -
- Journal -
- Audits -
- Law Firms -
- Training - - Conference -
- News -
- Links -
- Books -
- Contact Us -
- Privacy Policy -
- Home -

Handling Subject Access Requests

Training courses available in London, Manchester and Belfast

Dealing effectively with Subject Access Requests ( SARs ) remains a management challenge for many organisations.  Requests can come from customers, employees, complainants and others. The quantities of information typically held on individuals are increasing to vast proportions, sometimes as an unintended consequence of technological advances.

In the UK, individuals' awareness of their information rights, as well as their expectations of access, has reached an unprecedented level. Responding to Subject Access Requests remains an all-too-frequent drain on staff time and budgets.

This Workshop will examine the principal stages of managing the process by reference to appropriate materials and using scenarios based on real cases.  It will cover:

  • determining whether a valid request has been made under the Data Protection Act 1998

  • liaising with the applicant to clarify the request

  • analysing whether particular manual (paper) records fall
    within the law

  • setting parameters for the search for information and collating
    the results

  • establishing whether the retrieved information is personal data

  • dealing with third party data

  • applying the relevant exemptions

  • presenting the response to the applicant

  • managing dissatisfied recipients

  • guidance from the Information Commissioner's Office

  • how to deal with an investigation by the Information Commissioner's Office

  • interface with the Freedom of Information Act 2000

  • staff awareness and training

Participants in this 'Handling Subject Access Requests' Workshop will acquire the knowledge necessary to effectively manage the Subject Access Request process in their organisation and to instigate a process for dealing with such requests.

 

Participants will work through the Information Commissioner's guidance and a number of practical scenarios with expert guidance from one of the UK's leading experts on managing Subject Access Requests. Participants will also be encouraged to discuss any requests that they have dealt with and to share ideas and knowledge with other participants.

Course content: An examination of the practical and most cost-effective methods of dealing with Subject Access Requests including:

  • building blocks for establishing your own systems to deal with SARs

  • what types of information must be disclosed

  • how and when to withhold information

  • dealing with information relating to third parties

  • the practical distinction between paper-based and electronic information

  • what to do about information held by outsourcing companies, e.g. payroll providers and call centres

  • freedom of information interface

  • managing the complaints process

Participants may already be dealing with requests and want to review their handling or may never have dealt with requests and want to develop processes.  The course is designed to provide guidance to both.

 

There will be plenty of opportunity for questions at the Workshop.

 

Who should attend: Data Protection Officers, Information Officers, Privacy Officers, Compliance Officers, Information and Commercial lawyers ( in-house and private practice ), Office Managers, Human Resources Officers, Records Managers.

 

Dates & Locations

Manchester  Thursday, 11th September 2008
London  Wednesday, 17th September 2008
Belfast  Friday, 17th October 2008
London  Thursday, 27th November 2008

Venues:  To be confirmed 14 days before the course date

 

Timing:  Short Day – 10.00am to 4pm ( lunch included )

 

CPD:  This course is accredited by the Law Society with 5 hours CPD

 

Fee:  £395 plus VAT ( £464.12 )

 

To book your place

 

:: Complete the online application form
 :: Download PDF:  PDP training course outline and application form

:: Telephone the Training Booking Line: +44 (0)845-226 5723

 

 

About the trainer

 
Leonie Power is a member of the IP & Commercial team at Pinsent Masons.  She has particular experience in relation to both online and offline data protection issues and has acted for a wide range of companies including those in the retail, premiership football, telecommunications and financial services arenas.

Leonie spent time on secondment with a global financial services group where she was responsible for advising on data protection risk and audit and working as part of a team to update internal audit controls concerning data security.

 

- Leonie Power, Pinsent Masons -

Leonie Power
Pinsent Masons

 

Leonie has considerable experience of training delegates from a wide range of sectors on all aspects of data protection compliance.


 

We also provide the following courses:

:: Data Protection – Essential Knowledge

:: FOI and Data Protection – how they work together

:: Records Management I
:: Records Management II
 :: Data Protection in Employment
 :: Direct Marketing – Legal Risks and how to overcome them
 :: Data Protection Compliance for Law Firms
 :: Essential Data Protection Compliance for Charities
 :: Understanding the Environmental Information Regulations

:: Click to see full list of our Data Protection Courses

 

 

Upcoming PDP Conferences

PDP hosts professional Conferences in the areas of privacy, data protection, freedom of information and corporate investigations.  The speakers are the leading experts in their fields, and delegates receive invaluable practical advice. 

- 6th Annual Data Protection Compliance Conference, held in London, 2007 -

Many events have Workshops, where the delegates have the opportunity to work through practical scenarios and to get hands-on experience.  Please see our website for our upcoming Conferences.

 

PDP's legal notice

Updated:  12/08/08


Inform a friend about this site...  


 

 

 It was refreshing to have plenty of discussion and practical help. Many thanks
Paul Byrne,
British Airways

 

 The case study helped focus attention on real-life questions
Martin Stringfellow, Office for National Statistics

 

 Good course – useful!
Kevin Roden, Close Credit Management

 

 Excellent course – I am taking away some very useful material
Jackie Bates, Governance Advisor, Axa Insurance

 

 The small size of the group meant that it was highly interactive – very useful in clarifying understanding
Stephanie Allen, Solicitor, Littlewoods Home Shopping

 

 A good solid refresher course!
Dave Mackey, Assistant Legal Director, Sefton Council

 

 Particularly useful were the practical issues –applying the Act to real situations
Elizabeth Hiley, Information Access Officer, General Medical Council

 

 Very useful!
Kate Jenkins, Information Rights Officer, HM Treasury

 

 Excellent course
Vicky Payne, Information Governance Officer, London Borough of Havering

 

 Very informative about the SAR process – most useful
Neil Gorman,
Barclays Bank

 

 

 

 

Privacy & Data Protection journal

Europe's leading and UK's best-selling data privacy journal is dedicated to informing subscribers about topical news items from the world of privacy, security and data protection. 

Privacy & Data Protection journal contains articles written by people who are specialists in their fields and incorporates in-depth analyses and topical news items.

The Editorial Board are all experts in fields of data protection and privacy.

Privacy & Data Protection journal

 

 

 
 

© 2008 Privacy & Data Protection    |    All Rights Reserved    |    Site Comments? Email webmaster