When did you last review your company’s GDPR compliance? If you haven’t given it a second thought since Brexit became a reality, it’s time you did. We explain why. The General Data Protection Regulation (GDPR) celebrates its seventh anniversary in 2023. Post-implementation, most organisations collecting or using the data of EU subjects to carry out […]
Read More… from Does Brexit Mean Your GDPR Policies Are Out Of Date?
If a third party processes data on your behalf, you’ll need a Data Processing Agreement in place to protect your customers and your business – and you could be fined if you don’t get one. Our GDPR Local Experts can explain you why. You run an organisation that wields a lot of data. Sometimes you […]
Read More… from Do Third Parties Process Your Data? Why You Need a DPA & SCC
The right for every individual to access data held about them is a core principle of the GDPR. Individuals get hold of that data via a subject access request (SAR), but how should the request be made – and what happens when you receive one? GDPR Local’s Zlatko Delev explains. In the UK and EU, […]
Data Breaches GDPR: I Didn’t Know We Could Be Fined For That? You may know that companies can be fined for GDPR violations. Since 2018, more than 1,100 organisations have been. But did you know that private citizens can also risk penalties for data privacy violations? Here, data protection specialist Zlatko Delev, shares his knowledge […]
Consultancy Panel Data Protection Consultant? Join The GDPR Local Panel UK GDPR representative? EU rep? SOC2 guru? Wherever you are in the world, if you know data protection inside out, GDPR Local’s Zlatko Delev has an invitation for you. When you look cross-industry, data protection is a spectrum. At one end are the organisations who […]
Consultancy Panel GDPR Advice? Ask Our Experts For one-off questions or ongoing, on-tap expertise, it’s good to have a GDPR Local data protection consultant on your side. Data protection specialist Zlatko Delev explains why. Let’s suppose that you run a growing tech services company in the US and you’re about to ramp up marketing activity […]
The Information Commissioner’s Office (ICO) is producing an online resource with topic-specific guidance on employment practices and data protection. We are releasing our drafts of the different topic areas in stages and adding to the resource over time. A draft of the guidance on handling information about workers’ health is now out for public consultation. […]
The Privacy and Electronic Communications Regulations 2003 (as amended) (PECR) cover the sending of electronic mail for direct marketing purposes. This guidance discusses electronic mail marketing in detail. Read it if you have detailed questions not answered in the Guide to PECR, or if you need a deeper understanding of how PECR applies to electronic […]
Read More… from Guidance on direct marketing using electronic mail
The national commission for data protection has become the first data protection authority in Europe to accredit a GDPR certification body. On 12 October, Luxembourg’s national commission for data protection accredited the entity EY PFS Solutions via its certification mechanism, GDPR-CARPA (General Data Protection Regulation-Certified Assurance Report-Based Processing Activities). The mechanism is the first to be adopted […]
Read More… from Luxembourg delivers first GDPR accreditation
As your Article 27 Representative we will always help if you receive a SAR, RTE, or other data protection complaint. It is always best to avoid these all together but most companies will receive GDPR requests at some point. Disgruntled ex-employees, annoyed customers, malicious compensation-scammers are common sources of SARs and unfortunately these can result […]
+44 1772 217800
+353 01 554
9700 
+1 303 317
5998