28th Mar 2018
0
Any Answers comment Icon 4
6381

GDPR & Consent

GDPR & Consent template request

Didn't find your answer?

Search AccountingWEB

Industry insights

Bright

5 Cybersecurity considerations you can't ignore

Bright mono logo
Bright

Cybersecurity, the cloud and AI: Essential insight

Bright mono logo
Bright

How to talk to your clients about cybersecurity

Bright mono logo
View more

Latest Any Answers

Hello All

I have read that gaining consent from clients under GDPR is more than an update to the enagagement letter.

I know there is an ICO checklist detailing what the consent communciation needs to include- opt in boxes etc...

Has anyone got a template for this communication please that can be shared? 

Thanks

Balraj

Save content
Tags

Related resources

Guide
Sponsored

How to help clients with their business banking

Allica Bank & AccountingWEB whitepaper: How to help your clients with their business banking
Guide
Sponsored

Audit challenges and the role of technology

Thomson Reuters audit challenges whitepaper cover
Guide
Sponsored

Getting your technology ready for the future

Whitepaper front cover - illustration showing a discussion to get the most out of technology transformation

Replies (4)

Please login or register to join the discussion.

Mark Lee headshot 2023
By Mark Lee
03rd Apr 2018 11:25

Hi Balraj
There are a couple of things to clarify here.
Clients who have engaged you to do compliance work for them have clearly given you consent to process their data.

This should indeed be clear in your terms of business (which you might include as part of your engagement letter).

GDPR also requires you to make a number of other things clear to clients either in a privacy notice or your terms of business.

If you also want clients to consent to you sending them regular tax tips, newsletters or other marketing comms you can simply include this as one of your terms of business and ensure they confirm this ok when they accept your terms of business.

You have the practical issue of ensuring that all existing clients have given their explicit consent to you to to send them marketing material. Most accountants who do this will, I expect, send updated letters of engagement and/or highlight their privacy policy and invite clients to confirm they are ok with this.

There is a lot of hype and misconceptions surrounding GDPR - which is a shame.

If you'd like a free copy of the list of documents I created for accountants who want to comply with GDPR with minimum fuss, you can download it here >>>
http://bookmarklee.co.uk/gdpr-documents-list/

Thanks (1)
Replying to bookmarklee:
Neil Armitage
By Neil Armitage
05th Apr 2018 11:46

I would take issue with bundling marketing consent into terms of business as each element of data processing should really have granular, rather than global, consent.

The ICO state that it should be separate https://ico.org.uk/for-organisations/guide-to-the-general-data-protectio... - "We have made the request for consent prominent and separate from our terms and conditions."

On marketing consent it's definitely worth reading the following article

https://2040infolawblog.com/2018/02/15/unambiguously-yours/

Thanks (1)
Replying to Neil Armitage:
avatar
By [email protected]
30th Apr 2018 09:48

I agree - marketing consent should not be bundled together with terms of business.
See ICAEW guidance and templates for engagement letters and privacy notices here
https://www.icaew.com/en/technical/information-technology/cyber-resource...

Thanks (0)
Freddie
By Slim Freddie
03rd Apr 2018 12:06

Found this blog from my provider. It’s quite simply explained - https://www.brightpay.co.uk/blog/2018/03/template-data-processor-agreeme...

Thanks (2)

Related posts

stonks

Listed as Agent with HMRC for non-client

0 likes
2572 views
Any Answers image, large quotes
Stepurhan

Right to be forgotten

0 likes
1198 views
Any Answers image, large quotes
avatar

How do you verify that a caller is from HMRC?

0 likes
2838 views
Any Answers image, large quotes