Data Protection Archive
The GDPR (General Data Protection Regulation) introduced strict new rules regarding the way organisations report data breaches. Many businesses have already been caught out by these requirements. As a result, they’ve made a bad situation worse or created unnecessary work …
The right to data portability is one of eight rights enforced by the EU General Data Protection Regulation (GDPR). It allows data subjects to obtain data that a data controller holds on them and to reuse it for their own …
Organisations share personal data with third parties all the time, but can they be trusted? The GDPR (General Data Protection Regulation) extended the scope of responsibility when it comes to data protection and privacy, so where does that leave you when it comes to security incidents caused by …
Staff awareness training is an essential component of the GDPR (General Data Protection Regulation), but do you know how it works in practice? Here are seven things you can do to make your awareness programme a success.
Cookies are mentioned only once in the EU General Data Protection Regulation (GDPR), but the repercussions are significant for any organisation that uses them to track users’ browsing activity.
Many people mistakenly think that organisations must get consent to process personal data, but consent is one of six lawful grounds for processing data, and you’d be advised to seek it only if none of the other grounds apply.
The EU General Data Protection Regulation (GDPR) outlines six data protection principles that organisations need to follow when collecting, processing and storing individuals’ personal data. The data controller is responsible for meeting the principles and must be able to demonstrate the …
The longer a breach goes undetected, the more embarrassing it is for the organisation in question. But what’s a good target for identifying an incident?
More employees than ever now work remotely, and whether they’re at home, on a business trip or commuting, provisions need to be put in place to make sure data isn’t misused, mislaid or misappropriated.
As organisations adjust to the chaos that the 2019 novel coronavirus (COVID-19) has brought, they are bound to be limited in the business processes they can perform. Among the problems they face is the ability to comply with the GDPR …
