Code of Conduct – Robust Privacy Practices

As part of a robust compliance programme, the firm should implement a general code of conduct for its staff and partners. Therefore, a code of conduct outlines a set of principles and guidelines that employees and other stakeholders must adhere to in their business interactions. Typically this covers a wide range of ethical and fair business practice topics.

Moreover, an effective code of conduct helps to foster a culture of transparency and accountability with respect for the social, economic, environmental and other corporate responsibilities. Also can help build trust with customers and other stakeholders. When businesses are transparent about their data handling practices and demonstrate a commitment to protecting privacy, it can help foster a sense of trust and confidence in the brand. This is particularly important for SMEs, which may rely heavily on word-of-mouth and reputation to attract and retain customers.

Finally, a code of conduct can serve as a valuable tool for training and education. By outlining best practices and expectations around privacy, businesses can ensure that all employees have a clear understanding of their roles and responsibilities. This can help minimise the risk of human error or malfeasance, which can have serious consequences for privacy and security.


In conclusion, having robust privacy practices is a critical component of a robust privacy programme within an SME. It helps mitigate the risk of data breaches, build trust with customers and other stakeholders, and provide a valuable training and education tool for employees. By demonstrating a commitment to privacy and data protection, SMEs can position themselves as trustworthy and reliable partners in the eyes of their customers and the wider community.

For more information on how to draft and implement a code of conduct for your firm, do drop us an email.

Check out our knowledge base if you want to learn more about how to get started with GDPR.