September 4, 2023

Data breach management: 5 tips for an effective response

Some of the biggest personal data breaches in recent history have involved cyber-attacks on organisations by malicious third parties. A significant example is Yahoo’s breach, which […]
July 10, 2023

AI and GDPR compliance

Introduction to AI and GDPR compliance Since the release of ChatGPT last year, there have been widespread concerns within the community of lawmakers and regulators about […]
June 13, 2022

Data breaches – prevention is better than cure

Serious data breaches can be extremely costly for organisations when they occur. Despite this, we find that many businesses are unprepared for dealing with such an […]
April 4, 2022

Vendor due diligence – what you need to consider

The latest UK Data Protection Index report, produced jointly by The DPO Centre and Data Protection World Forum (DPWF) and based on a quarterly survey of […]
February 21, 2022

Password management – why ‘password’ shouldn’t be your password

In November 2021, France’s Supervisory Authority, the Commission national de l’informatique et des libertes (CNIL),  published its draft recommendation on password management, which was open to […]
January 6, 2020

NIST Draft Privacy Framework

On the 6th September 2019, the USA’s National Institute of Standards and Technology (NIST) published a preliminary draft of its new privacy framework entitled ‘Privacy Framework: […]
December 24, 2019

NIS Regulations and the need for representation

The NIS Directive is an EU Directive that was enacted into UK law as The Network and Information Systems Regulations 2018 (NIS Regulation). The NIS focusses […]
July 11, 2019

BA – A wake up call from the ICO

At £183.4m (US$228m) or 1.5% of BA’s worldwide revenue in 2017, this fine by the UK Information Commissioner’s Office (ICO) sets a new precedent in the […]
June 5, 2019

How to Recognise Data Breaches – Reportable vs Recordable

We are often asked by clients how to determine whether a breach is reportable to the supervisory authority and/or a data subject or if it should […]
May 29, 2019

Data Subject Access Requests (DSARs) – 5 Essential Steps

Our December 2018 blog post entitled “Data Subject Access Request = 4 words to fear?”, explained the need for a robust and efficient process for responding […]
Change your cookie consent