The ICO’s GDPR guidance pages have been devoid of any updates since the Regulation and DPA18 came into force back in May. However, the regulator has this week updated their guidance on International Transfers, providing a Q&A style assessment noting steps & actions when transferring data outside the EU. The guidance utilises a number of questions […]

Our guide to the Data Protection Fee looks at the ICO’s recent published guidance on the new data protection fee, which looks at the Governments’ new charging structure for data controllers. The fee will help to ensure the continued funding of the Information Commissioner’s Office (ICO) and will be based on a 3-tier model. Whilst […]

Our exclusive GDPR Compliance Statement Template is already included in our GDPR Documentation Toolkit. It is not recognised as one of the mandatory GDPR documents. However, many businesses have been asked to produce this statement and add it to their website. The GDPR compliance statement serves as a business plan for GDPR compliance. Furthermore, it […]

The ICO are replacing their existing GDPR checklist with 2 new versions, one for data controllers, and another for processors. The controller checklist is available now, with the processor version being released tomorrow (6th Dec). The checklists are designed to assess your compliance with data protection legislation and includes areas such as the new rights […]

Maintaining written (including electronic) records of processing activities is a GDPR requirement under Article 30, applying to controllers & processors with 250+ employees (and in limited cases , to those with fewer than 250 persons). Recital 82 advises that “each controller and processor should be obliged to cooperate with the supervisory authority and make those […]