Data is a risky business and you might need to assess the situation
As we’ve said many times before… Data – if you don’t need it, don’t keep it. It can be a risky business! We have seen a sudden surge in the number of calls we are receiving and the number of people applying for the GDPR training courses that we run. I have to confess, there have been moments when I was concerned that all the GDPR advertising would start to have the same annoying effect as the persistent PPI adverts. It appears that people are starting to pay attention to the GDPR noise now. I hear about it on the radio and it’s coming up a lot on people’s social media feeds.
Who are the data controllers and data processors within an organisation?
There’s a wind of change in the big wide world of data regulation and the GDPR. More organisations are becoming aware of the GDPR and business owners have started to ask a lot of important questions. Phew! At last, the message is getting through. However, there is still some confusion about data accountability. Most recently, I have been asked to explain the job roles of a data controller and data processor.
DIY data breach protection – a business owner’s GDPR toolkit
When we have conversations with business owners about data protection there are key phrases that we look out for, little indicators that tell us those people most probably aren’t ready for the new regulations - for example: ‘I have a department that deals with all that legal stuff, they will sort it out.’
Most people won’t even see 50% or more of the data exposure risks in this scene, can you?
We see these scenes like this every day and perhaps take things for granted or we presume or ignore. We miss the obvious. Recently I was discussing potential ‘data breach hazards’ in the office with a customer. Explaining how something as basic as an office rubbish bin has a big part to play in data protection. Normally when I mention this there is a pause in the conversation, followed by a realisation as to what I am talking about or just silence and a look of confusion.
Do you know what data you’re capturing?
In this article we provide some helpful guidance, not only on consent itself, but knowing what information you are capturing, what you are doing with this data and how you can prove the lifecycle of this data when it comes to a Subject Access Request.
The Data Protection Bill – What about the General Data Protection Regulation?
The Data Protection Bill and General Data Protection Regulation will go hand in hand and will give people more control over their data, support businesses in their use of data and prepare Britain for Brexit.
The General Data Protection Bill to update law for the digital age
The Data Protection Bill has a new approach to how the UK government is going to implement GDPR laws that are due to be enforced on the 25th May 2018 and some added extras that have been in the planning for a little while now.
5, 10, No! 20 things you need to know about GDPR
How many of these type of headlines have you read recently? You email inbox is jam packed full of them and they've probably been filed in junk mail or in your bin. One thing's for sure; preparation is key to all organisations under GDPR. Succinct headlines and a few key points really doesn't give you all you need to know about how to prepare.
How does Brexit affect data protection requirements?
With the vote to exit the EU nearly a year old and article 50 having been triggered in March, how does Brexit affect our data protection requirements? In this follow up article to an earlier article, we'll discuss the possible effects of Brexit on GDPR.
Retention of Data
Retaining data has always been a fragmented area of information security law. This article explores what personal data is, what constitutes processing data and for how long you should retain data, as it appears to be unclear within DPA and GDPR law.
Data Protection and Small to Medium-sized Businesses & Charities
Most small businesses and charities do not have specialist data protection officers. The issue of compliance with data protection legislation can be daunting, and detract from your business or your charity’s everyday operations.