March 4, 2024

EDPB Report: Challenges faced by DPOs in Europe

On 17 January 2024, the European Data Protection Board (EDPB) published a report on a co-ordinated investigation into the role of Data Protection Officers (DPOs).  25 […]
January 8, 2024

NHS DSPT: A guide to the latest requirements and avoiding common mistakes

The NHS Data Security and Protection Toolkit (DSPT) is an annual online self-assessment that allows organisations to measure their performance against the National Data Guardian’s 10 […]
February 20, 2023

CJEU Decision: Data subjects have the right to know who has received their personal data

In January 2023, the Court of Justice of the European Union (CJEU) in Case C-154/21, reached the decision that “every person has the right to know […]
December 12, 2022

The Digital Markets Act and GDPR – Considerations for ‘gatekeepers’

After its initial proposal in December 2020, the landmark European Digital Markets Act (DMA) has entered into force on the 1st of November 2022. This new […]
October 17, 2022

Biden signs Executive Order to implement the EU-US Data Privacy Framework 

On Friday 7th October, US President Joe Biden signed an Executive Order relating to Enhancing Safeguards for United States Signals Intelligence Activities.  The Executive Order directs […]
August 8, 2022

DBS checks: how to stay compliant with the UK GDPR 

If you asked a series of people whether they would prefer to hire a financial accountant who had previously committed fraud, or employ a financial accountant […]
June 27, 2022

DCMS consultation response – greater clarity or mass uncertainty? 

Back in November, we posted a blog discussing the UK’s Department for Digital, Culture, Media and Sport’s (DCMS) recently published consultation entitled “Data: a new direction”. […]
February 5, 2021

Updated EDPB Guidance on Controllers and Processors – Part 2

Following on from our first blog, this blog examines the second part of the EDPB’s guidance on controllers and processors. Whilst the first part provides guidance […]
January 11, 2021

Updated EDPB Guidance on Controllers and Processors – Part 1

On 2nd September 2020, the EU Data Protection Board adopted their new guidance document on data controllers and data processors. In many ways this has been […]
January 6, 2020

NIST Draft Privacy Framework

On the 6th September 2019, the USA’s National Institute of Standards and Technology (NIST) published a preliminary draft of its new privacy framework entitled ‘Privacy Framework: […]
Change your cookie consent