GDPR & The ePrivacy Regulation

The Privacy and Electronic Communications Directive (2002/58/EC) goes hand in hand with data protection and focuses primarily on personal data, data protection and privacy in the digital arena. Known as the ‘ePrivacy Directive’, its core is rooted in the EU’s secondary law (Article 7 of the Charter of Fundamental Rights of the EU), the fundamental […]

GDPR Processing Activities Register Template

Maintaining written (including electronic) records of processing activities is a GDPR requirement under Article 30, applying to controllers & processors with 250+ employees (and in limited cases , to those with fewer than 250 persons). Recital 82 advises that “each controller and processor should be obliged to cooperate with the supervisory authority and make those […]

FCA Approach to Consumers Paper

Following on from their Mission back in April, the FCA yesterday published their Approach to Consumers document; with both TCF and vulnerable customer awareness being heavily featured. The overall aim of the document is to ensure well-functioning markets for consumers, with the Regulator advising that their starting point is for firms to treat customers fairly […]

GDPR Data Mapping & Information Flow

Organising your personal data, reviewing the avenues for obtaining, using and storing the information and completing an information audit is an important part of the General Data Protection Regulation (GDPR) planning and implementing process. Starting with a data mapping exercise is pivotal to ensuring that you comply with the GDPR requirements and for structuring your personal […]

FCA 2017/18 Business Plan Overview

The Financial Conduct Authority (FCA) have just published their 2017/18 Business Plan, setting out their objectives, sector priorities, risk outlook, ongoing activities and the sectors who will come under closer scrutiny in the coming year. The plan also provides information on how the FCA will continue to meet their 3 main operational objectives: – Protecting […]

GDPR Preparation, Conditions & Rights

Following on from last month’s blog article “Beginner’s Guide to the General Data Protection Regulation (GDPR)“, this week we are looking at some of the conditions and rights that will apply under the new legislation and how firms can best prepare for their new obligations. Lawfulness of Processing Conditions The onus is on a firm’s processors and/or […]

FCA Sector Views Publication

For the first time, the Financial Conduct Authority (FCA) have published their Sector Views document alongside their annual release of their business plan, mission objectives and fee consultation paper. What are Sector Views? The FCA advise that “they need a view of how the financial system works as a whole, as well as within its […]

Guide to the General Data Protection Regulation 2018 (GDPR)

What is the GDPR? EU Directive 95/46/EC of the European Parliament was adopted in 1995 and stipulated that each EU member state must develop and implement their own law to meet the EU standards for handling and processing personal data. In accordance, the UK enacted The Data Protection Act 1998 (DPA) to ensure that British […]

Do You Have Double Compliance Standards?

Have you ever had that sinking feeling the day before an audit from a client? The wave of panic as you run around at the eleventh hour trying to collate and create evidence to prove you have a diverse and robust compliance program, that your staff training regime is second to none and that your […]