GDPR and the future of investigation

GDPR and the future of investigation

Changes to privacy laws across Europe in May are set to have a wide-ranging impact on how data and privacy is regulated. General Data Protection Regulations come into force on 25th May in all EU countries that will affect everyone in the 28 jurisdictions, but also anyone doing business with citizens anywhere in the EU.

Conflict International has been carefully assessing the implications when it comes to investigation and surveillance. Conflict’s Director of Compliance and Development, Roger Bescoby, says: “In the field of investigation, where a lot of the work is done without consent, the GDPR regulations are a massive change and it’s something that every company in Europe is going to have to come to terms with."

“Getting it wrong can be expensive so our clients will expect us to make sure there are no embarrassments along the way. We can do no more than to develop our relationship with the principle regulator, the ICO. We are in direct contact with them on almost a weekly basis.”

GDPR will give EU citizens more rights to know what personal information companies are storing and how it is being used.

“Greater transparency will be expected from clients and greater visibility of why we need to do what we need to do,” Roger added. “Whereas in the past it has been accepted that we need to conduct an investigation and need to look at a certain individual, going forward we’re going to have to show why we need to do that and have it in writing.”

“It’s up to us to guide our clients, many of whom wouldn’t be expected to understand how privacy works. We are going to have an education role and a responsibility to help our clients. The paperwork we will be producing to go alongside acknowledgement of instructions will give that guidance and hopefully reassurance to clients.”

To discuss a particular case or our services in more detail, please contact us in confidence on +44 (0)20 7917 2939 or email