How to Write a GDPR Data Protection Policy

This article offers guidance on How to Write a GDPR Data Protection Policy based on the General Data Protection Regulation (GDPR) including numerous documentation requirements for those obligated under the Regulation. Measures and controls that demonstrate compliance will need to be recorded; with some being included in an organisation’s data protection policies and procedures. What […]

How to Carry Out a Legitimate Interests Assessment (LIA)

What is Legitimate Interests? This article looks at how to carry out a Legitimate Interests Assessment (LIA) and gives guidance on the suggested stages. Legitimate Interests is one of the legal basis for processing personal data under the GDPR. Article 6(1)f of the Regulation states: – “Processing is necessary for the purposes of the legitimate […]