eu general data protection regulation

Luke Irwin April 18, 2019

What are the 6 data protection principles of the GDPR?

A version of this blog was originally published 31 January 2018. The GDPR (General Data Protection Regulation) outlines six principles that organisations must follow when collecting, processing and storing individuals’ personal data. Data controllers are responsible for complying with those principles, and they must have documented proof of how the organisation is meeting … [Read more...]

Filed Under: cyber regulations, data processing, data protection principles GDPR, Data Security, eu general data protection, eu general data protection regulation, GDPR, gdpr compliance, gdpr explained, gdpr guidance, GDPR resources, general data protection regulation

Luke Irwin April 16, 2019

10 steps to GDPR compliance: How prepared are you?

This blog has been updated to reflect industry changes. Originally published 16 October 2017. It’s not too late to comply with the GDPR (General Data Protection Regulation). The Regulation might have come into effect last year, but it’s requirements need to be regularly reviewed. As such, it doesn’t matter what your compliance posture was six months or a year … [Read more...]

Filed Under: data processing, Data Protection, Data Protection Act, data protection principles GDPR, Data Security, eu general data protection, eu general data protection regulation, GDPR, gdpr compliance, GDPR resources, GDPR training, general data protection regulation

Luke Irwin April 2, 2019

How the GDPR affects cookie policies

Updated to reflect developments since the GDPR took effect. Originally published on 15 September 2017. Cookies are mentioned only once in the GDPR (General Data Protection Regulation), but the repercussions are significant for any organisation that uses them to track users’ browsing activity. Recital 30 of the GDPR states: “Natural persons may be associated with … [Read more...]

Filed Under: cookie policy, Cookies Compliance, Cookies law, Data Protection, Data Security, eu general data protection, eu general data protection regulation, GDPR, gdpr compliance, gdpr guidance, general data protection regulation

Jessica Belton February 28, 2019

Luke Irwin January 22, 2019

Google fined €50 million in landmark GDPR ruling

Google has been fined €50 million by the CNIL, France’s data protection regulator, for a breach of the EU GDPR (General Data Protection Regulation). It’s by far the biggest fine related to the GDPR, which took effect in May 2018 and gave regulatory bodies much stronger disciplinary powers. What did Google do wrong? The CNIL concluded that Google had violated the GDPR in two … [Read more...]

Filed Under: Business Continuity, business continuity management, Comply with the GDPR, Cyber Resilience, Cyber Security, Data Protection, Data Protection Officer, eu general data protection regulation, GDPR, gdpr compliance, GDPR documentation, gdpr foundation, Ireland, Staff Awareness

Luke Irwin January 21, 2019

6 tools to help you manage your organisation’s security measures and GDPR compliance

The ability to prevent data breaches has become a lot more important since the GDPR (General Data Protection Regulation) took effect. You should have already been concerned about your customers’ freedom and privacy, your susceptibility to regulatory action and your ability to protect your reputation in the event of a security incident, but these have now taken on heightened significance. The … [Read more...]

Luke Irwin January 18, 2019

What is ISO 27001 certification?

ISO 27001 certification demonstrates that an organisation has met the requirements of the international standard for information security. This is hugely beneficial compared to simply following the Standard’s requirements, because it provides proof of the effectiveness of your security systems and satisfies the demands of clients and regulators. The ISO 27001 certification process Before … [Read more...]

Filed Under: Business Continuity, Comply with the GDPR, Cyber Security, Data Protection, Data Protection Officer, eu general data protection regulation, GDPR documentation, gdpr foundation, Ireland, ISO 27001, ISO 27001 certification, iso 27001 training

Luke Irwin January 16, 2019

How cyber resilience can help you comply with the GDPR

Cyber resilience is an emerging approach to tackling the threat of data breaches and disruptions, combining elements of cyber security and business continuity management. It acknowledges that traditional approaches to cyber security are increasingly inadequate, with organisations unable to cope with the number of threats facing them. With cyber resilience, organisations don’t put all their … [Read more...]

Luke Irwin January 15, 2019

How to document your information security policy

Information security policies play a vital role in organisational security. Getting your policy right will give you an excellent framework to build on, making sure that all your efforts follow a single goal. But if you get it wrong, you risk neglecting key issues and exposing yourself to data breaches. To make sure you get off on the right track, we’ve taken some advice from Alan Calder and … [Read more...]

Luke Irwin January 14, 2019

Still struggling with the GDPR? Here’s how you can get started

The GDPR (General Data Protection Regulation) has been in effect for more than seven months now, but many organisations still aren’t fully compliant with its requirements, and some are still only just getting started. That’s obviously not ideal, but the good news is that organisations that are still working towards compliance don’t need to feel as though they’ve left … [Read more...]

Filed Under: Business Continuity, Comply with the GDPR, Cyber Security, Data Protection, Data Protection Officer, eu general data protection regulation, GDPR, GDPR documentation, gdpr foundation, Ireland, ISO 27001, ISO 27001 certification, iso 27001 training, Staff Awareness

SEARCH

RECENT POSTS

Archives

DISCLAIMER