Data Protection Archive
The rhetoric in the run-up to the GDPR (General Data Protection Regulation) taking effect was that any organisation that didn’t have immaculate compliance practices would be in line for a €20 million fine. Although only the most frantic commentators thought …
We’ve come a long way since the panic and scepticism that accompanied the introduction of the GDPR (General Data Protection Regulation). Several high-profile fines and the continued warnings from regulators have led to a sharp uptick in the number of …
Business to business marketers have had countless questions about the GDPR (General Data Protection Regulation) since it took effect – and for good reason. Sensitive data is at the centre of everything they do. They need names, contact information and any …
Last month, France’s data protection authority, the CNIL, imposed a €150,000 fine on a data controller and a €75,000 fine on its data processor for their failure to implement adequate security measures. The ruling followed a credential stuffing attack against …
Staff awareness training is an essential component of the GDPR (General Data Protection Regulation), but do you know how it works in practice? Here are seven things you can do to make your awareness programme a success.
As you might have expected, the GDPR (General Data Protection Regulation) has created a spike in demand for data protection and privacy experts. Organisations are desperate to hire people who can guide them towards regulatory compliance and avoid large fines. For many organisations, this isn’t just a …
In case you didn’t already know, the GDPR (General Data Protection Regulation) requires Irish organisations to report data breaches to the DPC (Data Protection Commission) within 72 hours of becoming aware of them.
The UK’s Brexit transition period finally complete, but European organisations still face a period of uncertainty regarding data protection rules. That’s where EU GDPR – An international guide to compliance can help. This guide, written by IT Governance’s founder and …
For the past few months, organisations have been trying to grasp the full extent of this summer’s Schrems II ruling – which invalidated the EU—US Privacy Shield – and what it means for data transfers outside the EU. To help …
The GDPR (General Data Protection Regulation) makes a distinction between ‘personal data’ and ‘sensitive personal data’. In this blog, we look at the difference between those terms, and we begin by recapping the Regulation’s definition of personal data: ‘ersonal data’ means …
