All ()
Binding Corporate Rules ()
Data Discovery ()
Data Protection ()
Data Protection Impact Assessment (DPIA) ()
Data Protection Officer ()
Data Security & Encryption ()
Data Sharing ()
DSARs ()
EU Representation Services ()
featured post ()
GDPR ()
Impact Assessment ()
International law ()
Marketing Consent ()
Outsourced Data Protection Service ()
Policies & Documentation ()
Privacy by Design ()
Privacy Software ()
Special Category Data ()
Staff Training & Awareness ()
Uncategorized ()
US Privacy Shield ()
CCPA
March 2, 2020

CCPA Overview

International law

The California Consumer Privacy Act Overview The California Consumer Privacy Act (“CCPA”) entered into force on January 2020, bringing with it increased data protection obligations on […]

January 6, 2020
NIST

NIST Draft Privacy Framework

On the 6th September 2019, the USA’s National Institute of Standards and Technology (NIST) published a preliminary draft of its new privacy framework entitled ‘Privacy Framework: […]
December 24, 2019
NIS

NIS Regulations and the need for representation

The NIS Directive is an EU Directive that was enacted into UK law as The Network and Information Systems Regulations 2018 (NIS Regulation). The NIS focusses […]
October 4, 2019
What does a hard Brexit mean for UK companies

What does a hard Brexit mean for UK companies?

Background Due to recent political developments, the likelihood of the UK leaving the EU without a deal is a real possibility. Therefore, in preparation, The DPO […]
October 4, 2019
Rob Masson discusses the DPO’s changing role in a recent Podcast. Data protection officers are assuming a more strategic role that goes beyond ensuring compliance with […]
July 11, 2019
BA - A wake up call from the ICO with text

BA – A wake up call from the ICO

At £183.4m (US$228m) or 1.5% of BA’s worldwide revenue in 2017, this fine by the UK Information Commissioner’s Office (ICO) sets a new precedent in the […]
June 5, 2019
Recognise Data Breaches

How to Recognise Data Breaches – Reportable vs Recordable

We are often asked by clients how to determine whether a breach is reportable to the supervisory authority and/or a data subject or if it should […]
May 29, 2019
DSAR - 5 essential steps

Data Subject Access Requests (DSARs) – 5 Essential Steps

Our December 2018 blog post entitled “Data Subject Access Request = 4 words to fear?”, explained the need for a robust and efficient process for responding […]
May 22, 2019
GDPR - 6 key lessons for schools

GDPR – One Year On – 6 Key Lessons for Schools?

This time last year, we were all so very concerned about May 25th and the advent of the GDPR. How was it going to change things? […]
December 17, 2018
What are the six lawful bases

What are the six lawful bases and when do they apply?

Article 6 of the GDPR sets out six ‘lawful bases’ for processing personal data.  At least one of these must apply in order for data to […]
December 12, 2018
what is personal data

What exactly is ‘personal data’?

The General Data Protection Regulation (GDPR) has been introduced in the EU with the aim of improving the protection of personal data. Understanding whether an organisation […]
Sign up todayThe DPIA is a bitesize assessment of the impact of the most significant, interesting and important-to-know data protection issues. It’s not the full story, just a brisk, 3-minute resumé, collated and condensed especially for busy privacy professionals to ensure you’re aware of what’s happening in our fascinating, dynamic and engaging industry.