With organisations facing the constant threat of cyber attacks and data breaches, it’s essential that they have a plan for how to respond. A rapid response could be the difference between a minor disruption and potentially catastrophic damage. Research from …
DPOs (data protection officers) play a crucial role in an organisation’s information security and data privacy practices. Certain organisations must appoint a DPO to comply with the GDPR (General Data Protection Regulation), while others will benefit from independent expertise regardless …
Under the GDPR (General Data Protection Regulation), certain organisations are required to appoint a DPO (data protection officer) to oversee their compliance practices. In this blog, we explain when a DPO is required and how you can get started when …
Under the GDPR (General Data Protection Regulation), data subjects or their representatives are entitled to receive copies of any personal information that an organisation holds on them. The process of exercising this right is known as a DSAR (data subject …
Cyber security has in the past few years developed into one of the most essential aspects of an organisation’s operations. Criminal hackers have run rampant, with 62% of UK businesses experiencing an increase in attacks since 2020. Meanwhile, the introduction …
DSARs are the result of the GDPR’s (General Data Protection Regulation) right of access. This is one of eight data subject rights enshrined in the Regulation. It enables individuals to request the personal information that an organisation is processing about them. When …
If your organisation suffers a data breach, you must act quickly. The GDPR (General Data Protection Regulation) gives you 72 hours to report serious incidents, during which time you must investigate the source of the breach, document your findings and …
BCRs (binding corporate rules) help organisations demonstrate that they have adequate protections in place when making intra-group international data transfers. The rules have been widely discussed in relation to the GDPR (General Data Protection Regulation) and Brexit. Indeed, those two …
Since the GDPR (General Data Protection Regulation) came into effect, marketing departments have been hesitant to contact customers for fear that they will run into compliance problems. GDPR SMS marketing has been a particularly tricky topic, with organisations uncertain of …
Although the GDPR (General Data Protection Regulation) has its basis in EU law, organisations across the globe might be subject to its requirements. Whether non-EU companies are subject to the GDPR depends on various factors, which we discuss in this …
