GDPR Archive
DPOs (data protection officers) play a crucial role in an organisation’s information security and data privacy practices. Certain organisations must appoint a DPO to comply with the GDPR (General Data Protection Regulation), while others will benefit from independent expertise regardless …
Under the GDPR (General Data Protection Regulation), certain organisations are required to appoint a DPO (data protection officer) to oversee their compliance practices. In this blog, we explain when a DPO is required and how you can get started when …
DSARs are the result of the GDPR’s (General Data Protection Regulation) right of access. This is one of eight data subject rights enshrined in the Regulation. It enables individuals to request the personal information that an organisation is processing about them. When …
If your organisation suffers a data breach, you must act quickly. The GDPR (General Data Protection Regulation) gives you 72 hours to report serious incidents, during which time you must investigate the source of the breach, document your findings and …
Since the GDPR (General Data Protection Regulation) came into effect, marketing departments have been hesitant to contact customers for fear that they will run into compliance problems. GDPR SMS marketing has been a particularly tricky topic, with organisations uncertain of …
Although the GDPR (General Data Protection Regulation) has its basis in EU law, organisations across the globe might be subject to its requirements. Whether non-EU companies are subject to the GDPR depends on various factors, which we discuss in this …
The Welsh government has broken data protection laws more than 300 times since 2019, according to a FOI (Freedom of Information) request. Of those incidents, 11 were referred to the Information Commissioner’s Office, and three resulted in the affected data …
We live in a world of “datafied” children – whether we’re posting their photos on our social media pages, storing baby monitoring data in the Cloud or letting our kids use online services. Indeed, the likes of Facebook, Snapchat and …
Data sharing agreements between organisations with whom you send and receive information plays a major role in your compliance with the GDPR (General Data Protection Regulation) and similar regulations. Your organisation might refer to it by a different name – …
The GDPR (General Data Protection Regulation) is characterised by its widespread departure from previous European data protection laws – and one area where this is particularly the case is the scope of its application. Not only does the GDPR apply …