Digital Age of Consent under the GDPR

GDPR incorporated a separate article that regulates the processing of children’s personal data where children can provide valid consent on their behalf. As per Article 8 of the GDPR, where consent is the most appropriate mechanism to process personal data, ‘in relation to the offer of information society services directly to a child, the processing […]

Read More… from Digital Age of Consent under the GDPR

What is a personal data breach?

Many companies don’t take data privacy protection seriously until a data breach occurs.A data breach is the worst nightmare that can happen to a company.If you’ve ever faced a data breach, you will understand the difficulties that you might face without a robust protection. ICO thoroughly explains what a personal data breach is and how […]

Read More… from What is a personal data breach?

Instagram fined for violating GDPR regulations

The Irish Data Protection Commission fined Instagram in amount of €405 million euros for breaching the privacy rights of children under the EU General Data Protection Regulation. The investigation focused on how the platform allowed users aged between 13 to 17 years to operate accounts which showed their phone numbers and email addresses. This is […]

Read More… from Instagram fined for violating GDPR regulations

GDPR checklist on legal requirements for websites

Hello everyone, We hope you are having a great and successful day. We would like to share with you something very beneficial. The topic for today is, how to comply with the GDPR requirements for your website and what is the most important that you would need to be careful about.  We are sharing with you […]

Read More… from GDPR checklist on legal requirements for websites

Transcend partnering with GDPR Local

If you need an advanced Privacy Request management solution, take a look at this product from our partners at Transcend.io – this product is designed to automate the return, deletion and modification of user data across yourtech stack.  Transcend has over 1300+ integrations and data connectorsto allow you to connect to any location where user […]

Read More… from Transcend partnering with GDPR Local

Cookie Compliance

On 9th August 2022, noyb.eu lodged 226 GDPR complaints with 18 authorities against websites that use the popular cookie banner software (“OneTrust”) with deceptive settings. Following a first batch of complaints in May 2021 many websites using OneTrust have adapted their settings and added “reject” buttons. OneTrust also changed the standard settings to be more […]

Read More… from Cookie Compliance

Do I need to register with the ICO?

UK companies who collect, store, or process personal data may need to register with the ICO however registration is not always necessary and there are several exemptions which may apply. Where applicable registration is a legal obligation and the ico can issue pretty serious fines if you fail to register and pay the appropriate fee. […]

Read More… from Do I need to register with the ICO?

Do I need an Article 27 Representative?

What is an Article 27 Representative? Article 27 is one of GDPR’s most mis-understood requirements. Just like the other 98 articles, Article 27 forms part of your overall GDPR position and is part of your legal obligation. Put simply, if you are based outside of the EU, don’t have an entity inside the EU and […]

Read More… from Do I need an Article 27 Representative?

Accountability Tracker

As your Article 27 Representative we will always help if you receive a SAR, RTE, or other data protection complaint. It is always best to avoid these all together but most companies will receive GDPR requests at some point.  Disgruntled ex-employees, annoyed customers, malicious compensation-scammers are common sources of SARs and unfortunately these can result […]

Read More… from Accountability Tracker

How to handle a Subject Access Request

We have said this previously but we are still seeing a huge number of Subject Access Requests [SARs]. A SAR is a request made by or on behalf of the data subjects which grants the right to obtain a copy of all the personal data that an organization has collected about them. These are pretty […]

Read More… from How to handle a Subject Access Request