The Privacy and Electronic Communications Directive (2002/58/EC) goes hand in hand with data protection and focuses primarily on personal data, data protection and privacy in the digital arena. Known as the ‘ePrivacy Directive’, its core is rooted in the EU’s secondary law (Article 7 of the Charter of Fundamental Rights of the EU), the fundamental […]
Maintaining written (including electronic) records of processing activities is a GDPR requirement under Article 30, applying to controllers & processors with 250+ employees (and in limited cases , to those with fewer than 250 persons). Recital 82 advises that “each controller and processor should be obliged to cooperate with the supervisory authority and make those […]
Following on from their Mission back in April, the FCA yesterday published their Approach to Consumers document; with both TCF and vulnerable customer awareness being heavily featured. The overall aim of the document is to ensure well-functioning markets for consumers, with the Regulator advising that their starting point is for firms to treat customers fairly […]
Organising your personal data, reviewing the avenues for obtaining, using and storing the information and completing an information audit is an important part of the General Data Protection Regulation (GDPR) planning and implementing process. Starting with a data mapping exercise is pivotal to ensuring that you comply with the GDPR requirements and for structuring your personal […]