dcsimg

Swedish Data Inspectorate completes first GDPR Reviews

400 organisations and public authorities have been audited by the Swedish Data Inspectorate in its first review, to ascertain whether a DPO (data protection officer) has been appointed where required. The review showed deficiencies in nearly 25% of the organisations and authorities selected. Under the GDPR (General Data Protection Regulation), all public authorities and certain organisations are … [Read more...]

Finding the right candidate to be your DPO

Complying with the EU GDPR (General Data Protection Regulation) is mostly about hard work and organisation, but there’s also a little bit of luck involved – at least when it comes to appointing a DPO (data protection officer). The position, which is mandatory for many organisations under the GDPR, has caused a massive spike in demand for data protection experts. Unless the perfect candidate falls … [Read more...]

Norwegian study finds Google and Facebook manipulate users to share data despite GDPR

A recent study by the Norwegian government has found that Facebook and Google push users to share private information by using “invasive” and limited default options. The Norwegian Consumer Council’s Deceived By Design report suggests that the tech giants’ privacy updates clash with the new GDPR (General Data Protection Regulation). In a statement, the council’s director of digital services, … [Read more...]

How to create a strong password

“My password was hacked”: it’s the go-to excuse for people who post something regrettable on social media. Numerous celebrities, famous athletes and politicians have attempted to negate scandals by framing themselves as victims of a cyber attack. Perhaps some of them were telling the truth, but they’re hardly admonishing themselves of blame by admitting to being – or pretending to be – so bad at … [Read more...]

The GDPR: Understanding the 6 data protection principles

The EU General Data Protection Regulation (GDPR) outlines six data protection principles that organisations need to follow when collecting, processing and storing individuals’ personal data. The data controller is responsible for meeting the principles and must be able to demonstrate the organisation’s compliance practices. We’ve listed the six principles here with advice on how you can follow … [Read more...]

How will the GDPR affect sole traders?

Almost all organisations are affected by the EU General Data Protection Regulation (GDPR), from sole traders to multinationals. But even though the GDPR intends to unify data protection rules across the EU, everyone will face different problems. We’ve covered many of the issues you’re likely to come across, but this blog focuses on how the GDPR affects sole traders. Appoint a data protection … [Read more...]

How the GDPR will affect spam

Lawmakers and journalists have made bold claims about the EU General Data Protection Regulation (GDPR) over the past few years. ‘It will mitigate the threat of cyber attacks’. ‘It will give individuals more control over their personal data’. ‘It will lead to strict punishment for poor data protection practices’. These are all true, or at least there’s ample evidence to suggest as much. But some … [Read more...]

Pseudonymisation is the GDPR’s “escape hatch”

If you’ve been reading about the EU General Data Protection Regulation (GDPR), you probably know that massive changes to the way organisations collect personal data will soon be made. The days of stashing away as much data as possible and using it as and when the need arises are gone, as the Regulation mandates that information can only be collected if it meets certain lawful bases. But this … [Read more...]

The GDPR: Consumer rights for your personal data

You’re probably aware of ‘consumer rights’: they are the rules organisations need to follow to stop customers from being exploited. The specifics vary between laws, but they almost always include the rights to remain safe, informed and to lodge complaints. Though essential, these rights don’t reflect the way consumer culture has evolved in recent years. Goods and services are now often exchanged … [Read more...]

The GDPR and the future of location-based advertising

Not so long ago, marketers believed programmatic advertising (the use of someone’s personal data to create targeted ads) was “the next big thing”, but many people now claim that the EU General Data Protection Regulation (GPDR) is the “death knell” for this practice. One of the most common forms of programmatic advertising uses geo-tracking to target adverts based on someone’s location. It’s the … [Read more...]