dcsimg

Half of small businesses still aren’t GDPR compliant

It’s been more than 18 months since the GDPR (General Data Protection Regulation) took effect, and yet millions of small businesses across Europe have major compliance gaps, a study has found.  The GDPR Small Business Survey, which polled 716 organisations in Ireland, the UK, Spain and France, found that only 56% of organisations were confident that they obtained a lawful basis for processing … [Read more...]

3 reasons you should give your DPO specialist training

Organisations that appoint a DPO (data protection officer) will have a significantly different approach to information security than those that don’t.  The person who fills the position is responsible for monitoring the organisation’s data protection practices and helping staff understand their regulatory requirements, amongst other things.  Under the GDPR (General Data Protection Regulation), … [Read more...]

Is your organisation’s privacy notice GDPR compliant?

If your organisation is subject to the GDPR (General Data Protection Regulation), you must create and distribute a privacy notice.  This document ensures that individuals are aware of the way their personal data is processed, helping them understand what data is being collected, why and how it’s being used, and how long it will be kept.  But there are several other reasons organisations should … [Read more...]

Things to consider when processing biometric data

Biometric data is being used in countless systems these days. If you’ve ever used your fingerprint scan to unlock your phone or facial recognition software, then your biometric data is being processed.  But like any form of data, biometrics – i.e. information relating to individual’s physical, physiological or behavioural characteristics – are potentially accessible by malicious sources, and the … [Read more...]

Tackle your GDPR compliance issues head-on with IT Governance

It’s been almost a year since the GDPR (General Data Protection Regulation) came into force, but Cisco’s 2019 Data Privacy Benchmark Study found only 59% of organisations worldwide are compliant.  If you haven’t yet begun your compliance journey, you should prioritise tackling those areas where a lack of action leaves … [Read more...]

Interested in free GDPR & ISO 27001 Gap Analysis tools?

Are you feeling the strain from your data protection obligations? Staying secure can seem like impossible, not to mention expensive and time-consuming.  We understand your concerns, but we’re also aware that nothing is as importance as effective information security. That’s why, for a limited time, we’re giving away our ISO 27001 Gap … [Read more...]

Highlights from the Data Protection Commission’s first annual GDPR report

This week, the DPC (Data Protection Commission) published its first annual report under the GDPR covering the period 25 May to 31 December 2018. The report highlights a number of interesting statistics and year-on-year comparisons, most notably:   2,864 complaints received, bringing the total for 2018 to 4,113 complaints – a 56% increase on … [Read more...]

Google fined €50 million in landmark GDPR ruling

Google has been fined €50 million by the CNIL, France’s data protection regulator, for a breach of the EU GDPR (General Data Protection Regulation).  It’s by far the biggest fine related to the GDPR, which took effect in May 2018 and gave regulatory bodies much stronger disciplinary powers.  What did Google do wrong?  The CNIL concluded that Google had violated the GDPR in two … [Read more...]

6 tools to help you manage your organisation’s security measures and GDPR compliance

The ability to prevent data breaches has become a lot more important since the GDPR (General Data Protection Regulation) took effect. You should have already been concerned about your customers’ freedom and privacy, your susceptibility to regulatory action and your ability to protect your reputation in the event of a security incident, but these have now taken on heightened significance. The … [Read more...]

What is ISO 27001 certification?

ISO 27001 certification demonstrates that an organisation has met the requirements of the international standard for information security. This is hugely beneficial compared to simply following the Standard’s requirements, because it provides proof of the effectiveness of your security systems and satisfies the demands of clients and regulators. The ISO 27001 certification process Before … [Read more...]