What is LOCS:23 – The LOCS:23 Standard is a set of controls that are required to be in place to achieve LOCS:23 Certification.
The only certification standard for Legal Services approved by the ICO, LOCS:23 reflects best practice for protecting Client personal data whilst meeting UK GDPR requirements.
Following a rigorous audit by ADISA, we successfully achieved LOCS:23 certification. Throughout the process, we undertook a thorough review of infrastructure, identified and closed compliance gaps, upgraded and fine-tuned hardware, and implemented new technologies to meet the stringent requirements of the standard.
We took a proactive approach which not only strengthened our internal systems but also reinforced our commitment to safeguarding sensitive legal data.
LOCS:23 provides a measurable, auditable benchmark for demonstrating compliance with UK GDPR. Its scope extends across law firms, chambers, and legal service suppliers, covering both data controllers and processors.
“It makes GDPR compliance measurable and auditable and, crucially, will help give others confidence that we will protect client personal data — especially the sensitive information contained in client files. ..”
Michael Lieberman, Senior Clerk, 9 Park Place comments on the LOCS:23 Standard
“The journey to certification was both enlightening and rewarding. While we already held Cyber Essentials certification and had GDPR and other compliance training in place, the LOCS:23 process helped us take a deeper look at our systems. It highlighted areas where we were strong and, importantly, where we had room to grow.”
Lisa Hunt, Chambers Administrator, 9 Park Place on the journey to certification.