Luke Irwin, Author at IT Governance Blog En

How to respond to DSARs (data subject access requests) during the COVID-19 pandemic

Luke Irwin 31st March 2020 GDPR No Comments

As organisations adjust to the chaos that the 2019 novel coronavirus (COVID-19) has brought, they are bound to be limited in the business processes they can perform. Among the problems they face is the ability to comply with the GDPR …

[Continue Reading...]

A quick guide to the GDPR’s articles and recitals

Luke Irwin 26th March 2020 Uncategorised No Comments

There is such a breadth of information online about the GDPR (General Data Protection Regulation) that it can be daunting to find even basic clarifications on its rules and requirements. With this blog, we hope to simplify things, providing quick …

[Continue Reading...]

What are the security risks of Cloud computing?

Luke Irwin 24th March 2020 Uncategorised No Comments

Cloud services are an integral part of modern business, with as many as 94% of organisations using it for at least some part of their operations. The reliance on Cloud services will soar in the coming weeks and months, as …

[Continue Reading...]

What does the GDPR mean for B2B marketing?

Luke Irwin 19th March 2020 GDPR No Comments

Two years after the GDPR (General Data Protection Regulation) took effect, a lot of organisations remain unsure of how to approach compliance. This is especially apparent in B2B marketing, which deals with both business information and personal information. Employees often …

[Continue Reading...]

What’s the difference between information security and cyber security?

Luke Irwin 17th March 2020 Uncategorised No Comments

Are you confused about the terms ‘information security’ and ‘cyber security’, and why some people use them interchangeably? You’re not alone, as many discussions on data protection and cyber crime overlook the nuances that define the industry. We aim to …

[Continue Reading...]

What is ethical hacking and how can it protect you against threats?

Luke Irwin 12th March 2020 Cyber Security No Comments

Ethical hacking has become big business in the cyber security industry, with organisations embracing a seemingly radical approach to data protection. So, what is ethical hacking and how can it protect you against threats?

[Continue Reading...]

ISO 27001 and the importance of employees

Luke Irwin 5th March 2020 ISO 27001 No Comments

The people side of ISO 27001, is complex. Off-the-shelf staff awareness training solutions will help educate employees on many threats, but it requires constant vigilance from organisations to ensure that everyone is following the established guidance. That’s something that organisations …

[Continue Reading...]

Cyber attacks and data breaches in review: February 2020

Luke Irwin 3rd March 2020 Breaches and Hacks No Comments

This month has been a mixed bag in terms of cyber security incidents. On the one hand, the 630 million breached records represents a massive drop-off from last month and brings the monthly average back down to about the same …

[Continue Reading...]

The GDPR: Legitimate interest – what is it and when does it apply?

Luke Irwin 27th February 2020 GDPR No Comments

The GDPR (General Data Protection Regulation) outlines six conditions under which organisations can process personal data. Contractual requirements, legal obligations, vital interests and tasks carried out in the public interest are all relatively self-explanatory, leaving consent and legitimate interest that …

[Continue Reading...]

The GDPR: How to respond to data subject access requests

Luke Irwin 26th February 2020 Data Protection, GDPR No Comments

The introduction of the GDPR (General Data Protection Regulation) requires all organisations within its scope to give data subjects the right to review the personal data being held on them. These requirements are broadly consistent with previous laws about personal data access requests, albeit more rigorous. However, …

[Continue Reading...]

Luke Irwin Archive