dcsimg

What are the 6 data protection principles of the GDPR?

A version of this blog was originally published 31 January 2018.  The GDPR (General Data Protection Regulation) outlines six principles that organisations must follow when collecting, processing and storing individuals’ personal data. Data controllers are responsible for complying with those principles, and they must have documented proof of how the organisation is meeting … [Read more...]

Are you aware of your organisation’s cyber security vulnerabilities?

With 557 reported data breaches in 2018, it’s safe to say that cyber security should be a top priority for all organisations.  Most organisations are already well-aware of this threat and are pouring money into their security budgets. Gartner estimates that worldwide cyber defence spending could hit $114 billion (about €102 billion) in 2019, as organisations … [Read more...]

Are you aware of your organisation’s cyber security vulnerabilities?

With 557 reported data breaches in 2018, it’s safe to say that cyber security should be a top priority for all organisations.  Most organisations are already well-aware of this threat and are pouring money into their security budgets. Gartner estimates that worldwide cyber defence spending could hit $114 billion (about €102 billion) in 2019, as organisations … [Read more...]

How the GDPR affects cookie policies

Updated to reflect developments since the GDPR took effect. Originally published on 15 September 2017.  Cookies are mentioned only once in the GDPR (General Data Protection Regulation), but the repercussions are significant for any organisation that uses them to track users’ browsing activity.  Recital 30 of the GDPR states:  “Natural persons may be associated with … [Read more...]

How an ISO 27001-compliant ISMS helps you comply with the GDPR

Organisations have struggled with the GDPR (General Data Protection Regulation) since it took effect just under a year ago.  But compliance help is easier than you might expect. ISO 27001, the international standard for implementing and maintaining an ISMS (information security management system), has a lot in common with the GDPR – and unlike the … [Read more...]

Software to support your GDPR compliance project

General Data Protection Regulation (GDPR) compliance should be a priority and high on every organisation’s agenda with less than two months until the regulation comes into effect on 25 May 2018. Organisations need to be aware of what data they process and ensure it is processed in accordance with the law. As part of a GDPR compliance project, organisations must document their data processes, which … [Read more...]

The GDPR has arrived – is your organisation compliant?

The EU General Data Protection Regulation (GDPR) has been in effect for almost four weeks now – are you compliant, still working towards compliance or unsure of where to start? Compliance is not optional, and will be or already was a lengthy process for many organisations. Prioritising the areas where a lack of action leaves your organisation most exposed is important. With our extensive knowledge … [Read more...]

What am I supposed to do with all these privacy policy emails?

Society doesn’t tend to agree on much, but late last week hundreds of millions of people were united by the question: “What’s with all these emails about updated privacy policies?” The flurry of messages led to many jokes and memes, but lost among the humour was the reason for this torrent of emails. It wasn’t just an amazing coincidence that every organisation you’ve ever visited updated its … [Read more...]

Why ISO 27001 is integral to data protection compliance

With the EU General Data Protection Regulation (GDPR) compliance deadline on the horizon, any organisation that processes EU residents’ personal data will likely be exploring implementation options to help tackle its compliance project, if it hasn’t already done so. Supervisory authorities such as Ireland’s Data Protection Commissioner (DPC) have highlighted ISO 27001, the international standard … [Read more...]

The GDPR could boost blockchain-based content creation

The EU General Data Protection Regulation (GDPR) will have ramifications far beyond data protection, according to the founder of web content management system Zesty.io. Randy Apuzzo says that the GDPR’s emphasis on transparency could lead to a rise in blockchain-based content creation. A blockchain is a list of encrypted records that updates with changes and additions. It’s most commonly … [Read more...]