Protecting Vulnerable Customers Covid-19

During the Covid-19 crisis, it is more important than ever for regulated firms to consider their approach to treating customers fairly and vulnerable customers. The FCA have published a statement on their expectations for firms to maintain a high-level of compliance in both areas and for organisations to assess their existing controls and measures to […]

Are the GDPR Recitals Important?

YES! Organisations should be reading the Recitals alongside the Articles to ensure complete compliance with, and understanding of, the Regulation. The Recitals provide a mixture of additional information and supporting context, supplementing the Articles and making them more relatable; as well as providing essential information for effectively implementing the GDPR. Article 25 for example – […]

GDPR Appropriate Technical and Organisational Measures

The GDPR refers to having the ‘appropriate technical and organisational measures’ in place 89 times, stressing the importance the Regulation places on such measures. However, when it comes to defining exactly what these measures are, the Regulation is not quite as generous! The GDPR references these measures in areas such as: – “a controller shall […]

Using the 6 Outcomes to Effectively Implement TCF

Treating Customers Fairly Background Our article on using the 6 Outcomes to effectively implement TCF starts with the Treating Customers Fairly ethos which was originally introduced back in July 2006 by the Financial Services Authority (FSA), with the aim of giving confidence to consumers when dealing with the financial services industry. Pressure was put on […]

Suggested Actions for GDPR Implementation

The Impending GDPR This article covers our suggested actions for GDPR implementation and with there not being many businesses who haven’t heard of the data protection changes due on 25th May 2018, this article rings together guidance, suggestions and tools for preparation! The General Data Protection Regulation (GDPR) (2016/679) brings data protection legislation into the […]

GDPR Staff Awareness Training

Most employees should already be aware of their data protection obligations and how they can ensure that personal data is protected and processing lawfully. However, the GDPR brings with it numerous changes and additions that all staff must be aware of – which is why we have created this in-house GDPR Staff Training Package. It […]

Information Security & Working From Home

The NCSC (National Cyber Security Centre) have recently reported that they have detected more UK Government branded scams relating to coronavirus than any other subject. The FCA have published statements on their website regarding information security and the coronavirus, advising firms that “the exceptional circumstances introduced by coronavirus have required firms to change their ways […]

GDPR/DPA18 Compliant Privacy Notice

One of the most frequent questions we get asked is how to draft a GDPR compliant privacy notice! The ICO has some excellent existing guidance on privacy notices and are updating their information all the time to ensure that firms of all sizes meet the GDPR requirements. Whilst there is no ‘one-size-fits-all’ template for a compliant privacy […]

GDPR Documentation Toolkit Samples

With so many data protection policies and GDPR documentation toolkits to choose from, how do you know which is right for you? Knowing which provider to use for your GDPR data protection compliance can be confusing, especially when you are buying the data protection templates online and can’t be sure what you are getting. This […]