We use cookies to collect and analyse information on site performance and usage to improve and customise your experience, where applicable. View our Cookies Policy. Click Accept and continue to use our website or Manage to review and update your preferences.

Strictly necessary cookies

Cookie name Duration Cookie purpose
ASP.NET_SessionId Session This cookie holds the current session id (OPPassessment only)
.ASPXANONYMOUS 2 Months Authentication to the site
LSI 1 Year To remember cookie preference for Law Society websites (www.lawsociety.ie, www.legalvacancies.ie, www.gazette.ie)
FTGServer 1 Hour Website content ( /CSS , /JS, /img )
_ga 2 Years Google Analytics
_gat Session Google Analytics
_git 1 Day Google Analytics
AptifyCSRFCookie Session Aptify CSRF Cookie
CSRFDefenseInDepthToken Session Aptify defence cookie
EB5Cookie Session Aptify eb5 login cookie

Functional cookies

Cookie name Duration Cookie purpose
Zendesk Local Storage Online Support
platform.twitter.com Local Storage Integrated Twitter feed

Marketing cookies

Cookie name Duration Cookie purpose
fr 3 Months Facebook Advertising - Used for Facebook Marketing
_fbp 3 months Used for facebook Marketing

GDPR Course

Event Type Law Society Skillnet
Venue Online, On-Demand
CPD Hours 7.5 hours Management & Professional Development Skills (by eLearning) OR 7.5 hours Regulatory Matters (by eLearning)



This item is not available to book online

Aims and Objectives

The EU General Data Protection Regulation (GDPR) introduced new obligations and financial penalties arising from data breaches. The Regulation came into force on 25 May 2018. Law firms are data controllers and as such have to comply with the GDPR provisions. 

GDPR represents an “evolution” of rights and obligations, but a “revolution” in respect of the administrative compliance burden and sanctions for non-compliance. Law firms need to comply with increased data protection obligations and also need to show ‘accountability’. This includes a need to demonstrate compliance by having policies and procedures in place. 

Since the implementation of the GDPR, and the public’s increased awareness of rights to information, the number of Subject Access Requests being received by Law Firms and their clients is on the increase. Requests for data may come from clients, other law firms, employees and other third parties. Law Firms need to deal with these access requests efficiently and lawfully with minimum disruption to the work of the practice.  Law Firms also need to be in a position to advise their clients on how best to handle access requests. 

Modules and Topics

Module 1 - An Introduction to GDPR

  • An overview of the changes 
    Paul Lavery, Partner, Head of Tech. & Innovation Group, McCann FitzGerald 
  • The SME Toolkit 
    Pat Moran, Cyber Security & Data, Privacy Leader, PwC Ireland
  • Right of Access
    Maureen Daly, Partner, Tech. & Intellectual Property, Beauchamps Solicitors
  • Breaches and Data Litigation
    Ann Henry, Partner, TMT & IP Litigation, Pinsent Masons

* Note: this module was recorded end 2017.

Module 2 - How to Get your Law Firm GDPR Ready – a Practical Guide
Paul Lavery, Partner, Head of Technology & Innovation Group, McCann FitzGerald

  • The main requirements of GDPR including the main changes from existing data protection law
  • The Irish Data Protection Bill
  • Recommended steps for compliance
  • Recommended notices, policies and contracts which law firms should have in place to assist in evidencing GDPR compliance.

Module 3 - Subject Access Requests 
Paul Lavery, Partner, Head of Technology & Innovation Group, McCann FitzGerald

  • Legislative provisions under the GDPR and the Data Protection Act 2018 which are relevant to access requests
  • Formalities for dealing with a request
  • Time frames
  • Parameters of access request – “personal data” relating to the requester
  • Exemptions
  • When is an access request “manifestly unfounded or excessive”
  • How do access requests impact on the solicitor’s lien
  • Format of response letter
  • Form of access
  • Rights of appeal/complaint
  • Summary checklist and procedure
  • Data Protection Commission guidance

*CPD hours for GDPR training may be claimed as either Management & Professional Development Skills OR Regulatory Matters.


Paul Lavery, Partner, McCann FitzGerald Solicitors, Dublin
Paul is head of the Technology & Innovation Group in McCann FitzGerald and advises on a wide range of data protection, information technology, outsourcing, e-commerce, confidentiality and intellectual property issues. He writes and lectures widely on these and other topics. He is also a member of the Law Society Intellectual Property & Data Protection Law Committee

Maureen Daly, Partner, Tech. & Intellectual Property, Beauchamps Solicitors
Maureen is partner and head of the data protection & freedom of information team as well as the technology & intellectual property team at Beauchamps. She works with many renowned domestic and global brands particularly in the food & beverage, film, sports, technology & communications, travel, pharmaceutical and retail sectors as well as with SMEs, start-ups, charities, not-for-profit organisations and public sector bodies. Maureen advises on a wide range of data protection, freedom of information, data retention, intellectual property, confidentiality, technology, outsourcing and e-commerce issues. She is a member (and former chair) of the Intellectual Property & Data Protection Law Committee of the Law Society of Ireland.

Pat Moran, Cyber Security & Data, Privacy Leader, PwC Ireland

Ann Henry, Partner, Philip Lee, Dublin
Ann Henry is a partner with Philip Lee where she specialises in commercial litigation disputes concerning intellectual property, data, regulatory and contract law. She is Chair of the Intellectual Property and Data Law Committee of the Law Society and she is a member of the Government’s Data Forum.


  • On receipt of payment, login details will be sent to you by a member of our team via your provided email address. If you have not received login details within 2 working days of your booking please contact us on Finuasskillnet@lawsociety.ie or call the Law Society Finuas Skillnet Team in Dublin on 01 881 5727
  • This course must be completed in full to avail of the CPD hours on offer – a partially completed course will not qualify for any CPD accreditation.
  • This course is available from date of purchase to 31 December 2020. You should download any course materials you require before this date as you cannot access the course after 31 December 2020
  • Solicitors may now complete the entire 2020 CPD requirement of 20 hours online. For more information see www.lawsociety.ie/CPDscheme
  • For full programme details download the Brochure
  • View our Privacy Statement 
  • If you have technical or other queries, contact a member of the team on: Finuasskillnet@lawsociety.ie





This item is not available to book online