dcsimg

How to become a data protection officer

As you might have expected, the GDPR (General Data Protection Regulation) has created a spike in demand for data protection and privacy experts. Organisations are desperate to hire people who can guide them towards regulatory compliance and avoid large fines.  For many organisations, this isn’t just a wish; they are legally required to find such a person and appoint them as a DPO (data protection … [Read more...]

The GDPR: Why you need to review your third-party service providers’ security

Organisations share personal data with third parties all the time, but can they be trusted?  The GDPR (General Data Protection Regulation) extended the scope of responsibility when it comes to data protection and privacy, so where does that leave you when it comes to security incidents caused by service providers?    How third-party relationships work under the GDPR Before we begin, let’s be … [Read more...]

Identify your GDPR compliance gaps

In 2018, the number of data breaches almost tripled compared to the previous year. In just the first six months of this year, the number of data breaches has tripled again.  With data breaches on the rise, and Microsoft and WhatsApp recently proving that even the most high-profile organisations can fall victim, compliance with the GDPR (General Data Protection Regulation) is more important than … [Read more...]

The DPO role and why you should consider outsourcing it

Under the EU GDPR (General Data Protection Regulation), which came into force on 25 May 2018, certain organisations are required to appoint a DPO (data protection officer). An organisation is required to appoint a designated DPO where it is a public authority or body, or where its core activities consist of either: Data processing operations that require regular and systematic monitoring of data … [Read more...]

What am I supposed to do with all these privacy policy emails?

Society doesn’t tend to agree on much, but late last week hundreds of millions of people were united by the question: “What’s with all these emails about updated privacy policies?” The flurry of messages led to many jokes and memes, but lost among the humour was the reason for this torrent of emails. It wasn’t just an amazing coincidence that every organisation you’ve ever visited updated its … [Read more...]

How to meet the GDPR’s transparency requirements

The Article 29 Working Party (WP29) has released guidance to help organisations comply with the transparency requirements of the EU General Data Protection Regulation (GDPR).  The WP29 is an advisory body comprising representatives from each EU member state, and has produced numerous reports and advice on the GDPR.  Transparency is an overarching obligation under the Regulation, applying to the … [Read more...]