Chapter 1 of the GDPR (General Data Protection) outlines four general provisions that summarise the Regulation’s aims, regulatory requirements and key definitions. Understanding these are essential for GDPR compliance, so if there’s anything that you’re unsure of, you’ll benefit from …
A Belgian organisation was recently fined €50,000 (about £44,300) by the country’s DPA (Data Protection Authority) for violating the GDPR’s (General Data Protection Regulation) requirements concerning the appointment of a DPO (data protection officer). The person who filled the position …
On 31 January 2020, after almost four years of negotiations, the UK’s membership of the EU ended. This began a transition period, set to end on New Year’s Eve, during which the UK and the EU will agree their future …
The GDPR (General Data Protection Regulation) applies as much to your employees’ personal data as it does to your customers’. After all, their information is just as vulnerable to misuse and therefore it needs to be protected. Fortunately, you aren’t …
Under the GDPR (General Data Protection Regulation), organisations that send personal data to a country outside the EU that hasn’t been recognised as providing an adequate level of data protection need to use an appropriate safeguard mechanism. The two most …
If you strip away the big talking points of the GDPR (General Data Protection Regulation) – the massive fines and consent and what counts as personal data – you’re left with a simple, logical truth: data subjects have certain rights …
The idea of a virtual DPO (data protection officer) – or at least one who works remotely – is enticing. It would mean you could outsource the role, gaining expert advice without having to bring someone in to complete the …
We are more aware than ever of the value of our personal data, so it’s no surprise that HR departments have seen a spike in the number of DSARs (data subject access requests) being submitted in the past few years. …
We’ve pulled together the five biggest stories from the past month to help you keep abreast of the latest data privacy news. Court rules ‘right to be forgotten’ only applies in Europe, siding with Google Google has won against the …
Although cyber security breaches continue to make dramatic headlines, much early regulatory action from the UK’s ICO and across the EU – in terms of fines and enforcement notices – has been in basic areas of compliance: inadequate legal consent …
