Luke Irwin Archive

Cyber security has in the past few years developed into one of the most essential aspects of an organisation’s operations. Criminal hackers have run rampant, with 62% of UK businesses experiencing an increase in attacks since 2020. Meanwhile, the introduction …

DSARs are the result of the GDPR’s (General Data Protection Regulation) right of access. This is one of eight data subject rights enshrined in the Regulation, and it enables individuals to request the personal information that an organisation is processing about them. …

BCRs (binding corporate rules) help organisations demonstrate that they have adequate protections in place when making intra-group international data transfers. The rules have been widely discussed in relation to the GDPR (General Data Protection Regulation) and Brexit. Indeed, those two …

Since the GDPR (General Data Protection Regulation) came into effect, marketing departments have been hesitant to contact customers for fear that they will run into compliance problems. GDPR SMS marketing has been a particularly tricky topic, with organisations uncertain of …

The UK government recently unveiled plans to expand the list of countries that it deems provide adequate data protection.  It comes as part of a wider announcement on the future of the UK’s data protection regime, and follows the EU’s adequacy decision on the UK earlier this year.  Adequacy decisions mean that the …

We live in a world of “datafied” children – whether we’re posting their photos on our social media pages, storing baby monitoring data in the Cloud or letting our kids use online services. Indeed, the likes of Facebook, Snapchat and …

The EU Commission has awarded the UK two adequacy decisions. The first recognises that the UK meets the requirements of the GDPR (General Data Protection Regulation), and the other recognises that it meets the requirements of the Law Enforcement Directive. …