We’ll make you GDPR compliant … … just pay us £100 / £500 / £1,000 / £10,000 / £50,000 (delete as appropriate) People keep saying to us ‘we are GDPR compliant’ (and are probably totally unaware of the Data Protection […]
Personal Data breach reporting – why would you do it?
There’s a lot of confusion about data breach reporting – the GDPR says you have to report breaches but the Information Commissioner’s Office (ICO) says too many are being reported. There are several issues around data breach reporting. Here […]
Article 32 – GDPR: Why Is It My Favourite Article?
At some point in most of my GDPR training sessions I point out that Article 32 is my favourite article of the Regulation. Why do I do this? Partly because I like to see the reaction on people’s faces and […]
Why Do Employers Want Data Protection Certificates?
Why would you want a data protection certificate? So you’re thinking of applying for a job as a: and you need a data protection certificate to prove your experience. Or, you’re already in a position titled something like the above, […]
Are your PRIVACY NOTICES correct?
Is your Privacy Notice worth the paper it’s written on ?? * (* metaphorically speaking, of course!) I never cease to be amazed at how many incorrect, poorly worded, illegal and out of date Privacy Notices I see on company websites. […]
Why Would You Use a Data Protection Consultant?
How Can a Data Protection Consultant’s Services Reduce your Overhead? Why would you use a data protection consultant? The simple answer is because you want to comply with the legislation but don’t know where to start. Let’s explore this a bit […]
What about event photography? Make Sure You Get Consent Right
What are the GDPR consent issues for photographers and event managers? There’s a few … and GDPR consent is particularly relevant for photographers, journalists and event managers. Let’s look at an example. I recently attended a business networking event where […]
Is the GDPR being enforced?
After all the noise about massive GDPR penalties it might look as if the GDPR isn’t being enforced in the UK. All the fines currently issued by the ICO are still based on the old legislation – the Data Protection […]
Some Thoughts on Brexit and the GDPR
How will Brexit impact on data protection, specifically the General Data Protection Regulation (GDPR)? The details are very unclear and will probably remain so for some months. However there are some things which are fairly clear. Short Term At the […]
Get Ready for the GDPR
The European Parliament passed the General Data Protection Regulation (GDPR)… On the 14th April, after four years of argument and huge amounts of lobbying, the European Parliament passed the General Data Protection Regulation (GDPR). While this doesn’t change the basic […]
Ransomware – taking your data hostage
What is ransomware? Recently there has been a huge increase in the number of organisations which have suffered a ransomware attack. It is malware which encrypts all files on your computer and any network drives it can access, so that […]
We’re a small firm, no-one will hack us…
We’ve been hacked… …but it is only a list of names and email addresses, nothing too sensitive. How many times have I heard this? Let’s think for a moment about how phishing works. You receive an email apparently from a […]