dcsimg

An overview of the GDPR with Alice Turley, data protection expert

The GDPR (General Data Protection Regulation), which came into effect on 25 May 2018, places obligations on organisations to be more accountable for data protection.   What is personal data?  Personal data is any information relating to an identified or identifiable natural person (data subject). The GDPR places much stronger controls on the processing of special categories of personal data … [Read more...]

IT Governance Europe to speak about the GDPR, and transfers post-Brexit at Refresh Boyne event

Alice Turley, a GDPR consultant at IT Governance Europe, will take to the stage at the next Refresh Boyne event in Drogheda to talk about the impact of the GDPR one year on and how organisations can adequately protect their data transfers post-Brexit.   Alice, who is a qualified data protection, compliance and … [Read more...]

3 GDPR compliance mistakes and how to avoid them

The GDPR (General Data Protection Regulation) has been in effect for almost a year, but its compliance requirements are still subject to a lot of confusion. Many organisations aren’t sure exactly what they’re supposed to be doing, and even more worryingly, some are working under false assumptions.  If you fall into either of those … [Read more...]

What are the 6 data protection principles of the GDPR?

A version of this blog was originally published 31 January 2018.  The GDPR (General Data Protection Regulation) outlines six principles that organisations must follow when collecting, processing and storing individuals’ personal data. Data controllers are responsible for complying with those principles, and they must have documented proof of how the organisation is meeting … [Read more...]

Tackle your GDPR compliance issues head-on with IT Governance

It’s been almost a year since the GDPR (General Data Protection Regulation) came into force, but Cisco’s 2019 Data Privacy Benchmark Study found only 59% of organisations worldwide are compliant.  If you haven’t yet begun your compliance journey, you should prioritise tackling those areas where a lack of action leaves … [Read more...]

The DPO role and why you should consider outsourcing it

Under the EU GDPR (General Data Protection Regulation), which came into force on 25 May 2018, certain organisations are required to appoint a DPO (data protection officer). An organisation is required to appoint a designated DPO where it is a public authority or body, or where its core activities consist of either: Data processing operations that require regular and systematic monitoring of data … [Read more...]

5.9 million payment cards compromised in Dixons Carphone Breach

Dixons Carphone has admitted to a major data breach involving 5.9 million payment cards and 1.2 million personal data records. The incident began in July 2017, when attackers attempted to compromise payment cards in Curry’s PC World and Dixons Travel’s processing system. In a second breach, the names, addresses and email addresses of 1.2 million customers were accessed. Dixons Carphone’s chief … [Read more...]

Ireland’s data watchdog deals with 1,300 GDPR queries

Since the enforcement of the General Data Protection Regulation (GDPR) on 25 May 2018, Ireland’s data watchdog has dealt with 1,300 GDPR queries, and 60 data breaches have been logged by organisations. The watchdog began receiving the first complaints when the law was implemented last month, and has also begun to receive notifications from organisations about possible data breaches. Most of these … [Read more...]

What am I supposed to do with all these privacy policy emails?

Society doesn’t tend to agree on much, but late last week hundreds of millions of people were united by the question: “What’s with all these emails about updated privacy policies?” The flurry of messages led to many jokes and memes, but lost among the humour was the reason for this torrent of emails. It wasn’t just an amazing coincidence that every organisation you’ve ever visited updated its … [Read more...]