First, we worked with Amberjack to understand the scope of their data use. This meant not only understanding employee and supplier data but also Amberjack’s Applicant Tracking System. We went through workflows for each and every task, involving data, to understand documentation needs, as well as areas of risk.

This work led to our redrafting Amberjack’s standard client contract, as well as producing a tailored Privacy Policy that represented the exact ways in which Amberjack works with client data, within the Applicant Tracking System. Linked to this we produced a series of Data Processing Addendum template for Amberjack to use to remediate existing client contracts so that they were compliant with the requirements of the GDPR.

Further, working with over 100 freelance suppliers (who support the assessment processes), we needed to change all supplier contracts and ensure compliance across not only existing relationships, but for the future. We also helped Amberjack in thinking about retention periods for personal data processed on behalf of clients.

“Put simply – I have nothing but praise for ClaydenLaw. Piers and, in particular, Hannah, were absolutely fantastic. … We really couldn’t have got to 25th May 2018, in a compliant fashion, without their guidance. ClaydenLaw has made a material difference to the way we work and contributed, directly, to Amberjack’s ongoing success. With ClaydenLaw, we know we have a partner who we can trust to deliver practical advice on time and on budget and we look forward to continuing to work with them as GDPR best practice beds in”

For more information on the relevant areas mentioned in this case study, please click below:


We will use this information to respond to your enquiry.  Please see our Privacy Notice for further information about our use of personal data.