Data Protection Officer – Role and responsibilities

Data Protection Officer (DPO) is a new leadership role that is created with the enforcement of the General Data Protection Regulation (GDPR) DPO is a cornerstone of accountability and appointing a DPO can facilitate compliance and competitive advantage for businesses- highly attractive traits. The GDPR sets minimum responsibilities for a DPO that revolve around supervising the implementation of a data protection strategy, assuring compliance with GDPR, and […]

Read More…

GDPR and Artificial Intelligence

According to some estimates, developments in artificial intelligence (AI) could boost the global GDP in 2030 by 14 percent—or in absolute terms, $15.7 trillion. In attempting to capture gains from this economic growth, governments worldwide have been competing to support AI development and adoption. But that growth may be affected by the way governments regulate AI and the large […]

Read More…

Proposal for an ePrivacy Regulation

The European Commission’s proposal for a Regulation on Privacy aims at reinforcing trust and security in the digital world. Why a reform of e-Privacy legislation? European legislation needs to keep up with the fast pace at which IT-based services are developing and evolving. The Commission has started a major modernisation process of the data protection framework over […]

Read More…

What is a GDPR data processing agreement?

Virtually every business relies on third parties to process personal data. Whether it’s an email client, a cloud storage service, or website analytics software, you must have a data processing agreement with each of these services to achieve GDPR compliance. What needs to be in a data processing agreement GDPR Article 28 Section 3, explains […]

Read More…

ICO Code of Practice to protect children’s privacy online

“There are laws to protect children in the real world. We need our laws to protect children in the digital world too.” – UK Information Commissioner Information Commissioner’s Office in January has published a set of 15 standards that online services should meet to protect children’s privacy. The code sets out the standards expected of […]

Read More…

Changes in the Data protection after UK has left the EU .

Following the UK’s departure from the European Union, these are the latest updates on how this affects GDPR and the sensitive issue of data protection. Overview of the current situation: The General Data Protection Regulation (GDPR) has been retained in UK law and will continue to be read alongside the Data Protection Act 2018, but […]

Read More…

How to avoid fines …

Yesterday we have mentioned what are the biggest fines issued by the ICO. The fines show that the GDPR (General Data Protection Regulation), has given enforcers like the UK’s ICO (Information Commissioner’s Office), some serious teeth. With these fines in mind, it’s a good time to make sure you’ve minimized your risk of being next […]

Read More…

Biggest fines in 2020/2021

According to research from DLA Piper, between January 26, 2020, and January 27, 2021: GDPR fines rose by nearly 40% Penalties under the GDPR totaled €158.5 million ($191.5 million) Data protection authorities recorded 121,165 data breach notifications (19% more than the previous 12-month period) The UK’s Data Protection Authority, the Information Commissioner’s Office (ICO), recently […]

Read More…

EU/UK representative services

Article 27: Article 27 of the GDPR includes the requirement for companies that provide goods and services to EU citizens should provide an EU based Representative so that data subjects and Regulators can easily contact companies to raise data protection issues or concerns. Now that the UK has left the EU the situation becomes slightly […]

Read More…

How do you document your processing activities?

How should you prepare? A good way to start is by doing an information audit or data-mapping exercise to clarify what personal data your organisation holds and where. It is important that people across your organisation are engaged in the process; this can help ensure nothing is missed when mapping the data your organisation processes. […]

Read More…