dcsimg

An overview of the GDPR with Alice Turley, data protection expert

The GDPR (General Data Protection Regulation), which came into effect on 25 May 2018, places obligations on organisations to be more accountable for data protection.   What is personal data?  Personal data is any information relating to an identified or identifiable natural person (data subject). The GDPR places much stronger controls on the processing of special categories of personal data … [Read more...]

The GDPR: How to respond to data subject access requests

The introduction of the GDPR (General Data Protection Regulation) requires all organisations within its scope to give data subjects the right to review the personal data being held on them.  Individuals can make this request by submitting a DSAR (data subject access request), which organisations must respond to by providing:  Confirmation that the individual’s data is being processed.  Access to … [Read more...]

What we’ve learned about the GDPR in its first year

This time last year, organisations were scrambling to meet the compliance deadline for the GDPR (General Data Protection Regulation), people’s inboxes were flooded with last-minute pleas for consent and social media was rammed with GDPR memes.  Twelve months later and the commotion surrounding the Regulation has calmed, but its impact remains. In this blog, we look at the effects the GDPR has had … [Read more...]

How to write GDPR-compliant consent forms

The new consent requirements introduced in the GDPR (General Data Protection Regulation) mean you need to be extra vigilant when it comes to requesting information. The rules for lawful consent are much tougher than in the past, and savvy data subjects will be bound to query anything that seems suspicious.  You can be sure your data processing activities meet the GDPR’s consent … [Read more...]

Burger King data breach potentially exposed the data of thousands of children

Kool King, an online shop owned by Burger King, had thousands of customer records exposed through an unsecured database, which was discovered last week.  The website allows customers who purchase from the children’s menu in Burger King, France to access content, including games, films and activities, after creating a profile on the platform.   The breached database, which potentially contained the … [Read more...]

IT Governance Europe announces new PCI DSS training courses

The PCI DSS (Payment Card Industry Data Security Standard) is administered by the PCI SSC (Security Standards Council) to help prevent payment card fraud and strengthen payment card data security. All organisations that accept, store, transmit or process cardholder data must comply.   When implemented correctly, the PCI DSS helps organisations secure … [Read more...]

IT Governance Europe to speak about the GDPR, and transfers post-Brexit at Refresh Boyne event

Alice Turley, a GDPR consultant at IT Governance Europe, will take to the stage at the next Refresh Boyne event in Drogheda to talk about the impact of the GDPR one year on and how organisations can adequately protect their data transfers post-Brexit.   Alice, who is a qualified data protection, compliance and … [Read more...]

3 GDPR compliance mistakes and how to avoid them

The GDPR (General Data Protection Regulation) has been in effect for almost a year, but its compliance requirements are still subject to a lot of confusion. Many organisations aren’t sure exactly what they’re supposed to be doing, and even more worryingly, some are working under false assumptions.  If you fall into either of those … [Read more...]

Hospital patients’ medical notes found on Drogheda estate

Hospital notes on patients who attended Our Lady of Lourdes Hospital in Drogheda, Co. Louth were discovered on a housing estate earlier this week.  The doctor handover notes, detailing the dates of birth, family situations, medical conditions and hospital wards attended of ten patients who visited the hospital’s emergency … [Read more...]

IT Governance Europe exhibiting at TechConnect Live 2019

IT Governance Europe will be exhibiting at this year’s TechConnect Live in Dublin on 30 May 2019.   Attendees are invited to visit us at stand F18, where we will be presenting a wide range of GDPR (General Data Protection Regulation), IT GRC (governance, risk and compliance), and cyber and technical products and services. Our team will be on hand to … [Read more...]