The Information Commissioner’s Office (ICO) have conducted a two-year investigation into the handling and use of personal data held by the 3 main credit reference agencies, Experian Limited, Equifax and TransUnion. The ICO found data protection breaches within all 3 agencies citing “significant ‘invisible’ processing took place, likely affecting millions of adults in the UK”. […]
12
Oct
Oct
The GDPR (and the DPA18 which writes this Regulation in to UK law) sets out under Article 5 the principles that relate to the processing of personal data. These principles can be condensed into: – Lawfulness, fairness and transparency Purpose limitation Data minimisation Accuracy Storage limitation Integrity and confidentiality Paragraph 2 of Article 5 states […]
Will the UK have a deal with the EU before October 31st? As of writing this post the answer is still uncertain and so it is essential that firms of all sizes with obligations under the GDPR ensure that they are fully compliant with the Regulation. The UK Government have already confirmed that the GDPR […]
YES! Organisations should be reading the Recitals alongside the Articles to ensure complete compliance with, and understanding of, the Regulation. The Recitals provide a mixture of additional information and supporting context, supplementing the Articles and making them more relatable; as well as providing essential information for effectively implementing the GDPR. Article 25 for example – […]
17
Jun
Jun
Do Your Staff Need GDPR Training Sessions? Most employees should already be aware of their data protection obligations and how they can ensure that personal data is protected and processing lawfully. However, the GDPR brings with it numerous changes and additions that all staff must be aware of – which is why we have created […]
The NCSC (National Cyber Security Centre) have recently reported that they have detected more UK Government branded scams relating to coronavirus than any other subject. The FCA have published statements on their website regarding information security and the coronavirus. “The exceptional circumstances introduced by coronavirus have required firms to change their ways of working at […]
With so many data protection policies and GDPR documentation toolkits to choose from, how do you know which is right for you? Knowing which provider to use for your GDPR data protection compliance can be confusing, especially when you are buying the data protection templates online and can’t be sure what you are getting. This […]
The World is a very different place than it was a few weeks ago and businesses are now operating in a time of flux, with many not being able to operate at all. With so many employees working from home and contact with customers being made in new or different ways; you need to ensure […]
How robust your data protection program is may be being tested during this difficult time, with employees working from home and others in workplaces with an abundance of staff absences. Having compliant GDPR and DPA18 policies, procedures and controls in place is mandatory, but has never been so important. How you process personal data during […]
This article provides guidance on writing your own GDPR/DPA18 Policy and utilises the requirements set out under the General Data Protection Regulation (GDPR) and Data Protection Act 2018 (DPA18). What is a Data Protection Policy? The GDPR advises that controllers must implement appropriate technical and organisational measures to comply with the GDPR; with those measures […]