|Purpose:||To provide template controller-processor agreements under the GDPR, for barristers to use with their chambers, pupils, and mini-pupils and other visitors|
|Scope of application:||All practising barristers and chambers|
|Issued by:||The Information Technology Panel|
|Status and effect:||Please see the notice at end of this page. This is not “guidance” for the purposes of the BSB Handbook I6.4.|
The General Data Protection Regulation (GDPR) comes into force in May 2018, directly applicable to the UK. Click here for information about upcoming Bar Council training on the GDPR.
Under the GDPR, barristers as data controllers are required to have controller-processor agreements in place with those who process data for them. The IT Panel has provided template agreements for the following purposes:
Please note that these are templates only, which you should amend according to your own specific circumstances. For more information about controller-processor agreements, see the GDPR Guide for Barristers and Chambers here.
Download: Controller-processor agreement for chambers:Download ( DOCX )
Download: Controller-processor agreement - minipupils and other visitors:Download ( DOCX )
Download: Controller-processor agreement - pupils:Download ( DOCX )
This document has been prepared by the Bar Council to assist barristers on matters of professional practice, ethics and information security. It is not “guidance” for the purposes of the BSB Handbook I6.4, and neither the BSB nor bodies regulating information security nor the Legal Ombudsman is bound by any views or advice expressed in it. It does not comprise – and cannot be relied on as giving – legal advice. It has been prepared in good faith, but neither the Bar Council nor any of the individuals responsible for or involved in its preparation accept any responsibility or liability for anything done in reliance on it. For fuller information as to the status and effect of this document, please see here.