This webinar examines the complex relationship between Consumer Duty and UK GDPR, focusing on the data storage and privacy considerations businesses must address to remain compliant.
It explores regulatory expectations around the handling of vulnerable customer data, helping organisations understand how to balance customer protection with lawful and proportionate data use.
Overview
The intersection of Consumer Duty and GDPR, and what this means for data storage and privacy
Key challenges in managing and storing data relating to vulnerable customers
Special category data and its implications for GDPR compliance
The role of third-party data sources, such as open banking, as alternatives to direct data collection
Types of customer data that may need to be retained, and the permissions required
Understanding explicit consent: what it is, when it applies, and when it is not required
Best practices for data retention, including how long vulnerable customer data should be kept
How GDPR supports or limits the storage of information about vulnerable customers
Internal and external data sharing: when, why, and how data can be shared lawfully
This session is designed to help organisations navigate data storage and privacy obligations while maintaining compliance with both Consumer Duty and UK GDPR
Next webinar
In our next webinar, we look at how proactively supporting vulnerable customers can drive real commercial value beyond regulatory compliance. We explore how embedding vulnerability into business strategy strengthens customer relationships, improves outcomes, and reduces complaints and inefficiencies, while using data and inclusive design to enhance decision-making, brand reputation, and long-term performance.