Data Protection Archive

The EU General Data Protection Regulation (GDPR) requires organisations to adopt the principles of “privacy by design and by default”. These concepts require organisations to embed security measures into their systems at the outset, rather than applying features retroactively. It …

The GDPR (General Data Protection Regulation) outlines six conditions under which organisations can process personal data. Contractual requirements, legal obligations, vital interests and tasks carried out in the public interest are all relatively self-explanatory, leaving consent and legitimate interest that …

If you do business with a UK-based organisation, your relationship will change when the Brexit transition period ends on 31 December 2020. Notably, there is still much uncertainty when it comes to transferring personal data into and out of the …

Have you got a cookie policy on your website? Are you advising website visitors of the fact that you are using cookies, what types of cookies you use and why? Are you providing them with the options to accept, reject …

Ireland’s DPC (Data Protection Commission) will start enforcing data protection laws concerning the use of cookies more rigorously, following an investigation that revealed widespread non-compliance. Depending on the way they are used, cookies and other tracking technologies are considered personal …

The recent cyber security incident at Blackbaud has demonstrated that universities must take more responsibility when it comes to protecting their systems. The software provider was hit with ransomware earlier this year, giving cyber criminals access to a wealth of …

Organisations always have to worry about the security of the information they send by email. You can never be certain who has access to your messages, and everyone has probably been guilty at least once of sending a message to …