Data Protection Archives - IT Governance Blog En

GDPR: When do you need to seek consent?

Luke Irwin 6th January 2022 Data Protection, GDPR 5 Comments

Many people mistakenly think that organisations must get consent to process personal data, but consent is one of six lawful grounds for processing data, and you’d be advised to seek it only if none of the other grounds apply.

[Continue Reading...]

The GDPR: Understanding the 6 data protection principles

Luke Irwin 9th December 2021 Data Protection, GDPR 14 Comments

The EU General Data Protection Regulation (GDPR) outlines six data protection principles that organisations need to follow when collecting, processing and storing individuals’ personal data. The data controller is responsible for complying with the principles and must be able to …

[Continue Reading...]

The GDPR: Why you need to adopt the principles of privacy by design

Luke Irwin 23rd November 2021 Data Protection, GDPR 1 Comment

The EU General Data Protection Regulation (GDPR) requires organisations to adopt the principles of “privacy by design and by default”. These concepts require organisations to embed security measures into their systems at the outset, rather than applying features retroactively. It …

[Continue Reading...]

Who requires a DPO?

Luke Irwin 4th November 2021 Data Protection, GDPR No Comments

Under the GDPR, certain organisations are required to appoint a DPO (data protection officer). Organisations are also required to publish the details of their DPO and provide these details to their national supervisory authority.

[Continue Reading...]

EDPB unveils cookie banner taskforce: Have you reviewed your organisation’s compliance practices?

Luke Irwin 19th October 2021 Data Protection, GDPR 1 Comment

If you run a website, the chances are that you collect EU residents’ personal data. Perhaps you collect names and email addresses so visitors can subscribe to your newsletter, take payment card details for an online store or use cookies …

[Continue Reading...]

How to recover from a data breach

Luke Irwin 14th October 2021 Data Protection No Comments

Cyber attacks and data breaches are clearly huge risks for organisations. It’s important to do everything possible to prevent incidents, but it’s just as important to have a plan in case disaster strikes.

[Continue Reading...]

5 tips to keep your data safe and secure

Luke Irwin 30th September 2021 Data Protection, GDPR 2 Comments

some of the most effective data protection methods are relatively inexpensive and easy to implement. Here are five simple solutions to help keep your data secure and reduce the risk of a data breach.

[Continue Reading...]

The GDPR: Why your organisation needs to conduct DPIAs

Luke Irwin 16th September 2021 Data Protection, GDPR No Comments

DPIAs (data protection impact assessments) help organisations identify, assess and mitigate privacy risks to data processing activities. They are particularly important when introducing new data processes, systems and technologies.

[Continue Reading...]

How organisations should tackle their data privacy requirements

Luke Irwin 19th August 2021 Data Protection No Comments

Data privacy is one of the biggest problems that organisations and individuals face in modern business. Customers are increasingly striving for personalised services – whether that’s recommendations tailored to their interests, account customisation, reports based on previous activity or countless …

[Continue Reading...]

The GDPR: Legitimate interest – what is it and when does it apply?

Luke Irwin 19th August 2021 GDPR 10 Comments

The GDPR (General Data Protection Regulation) outlines six conditions under which organisations can process personal data. Contractual requirements, legal obligations, vital interests and tasks carried out in the public interest are all relatively self-explanatory, leaving consent and legitimate interest that …

[Continue Reading...]