ICO published the next chapter of the Anonymisation guidance draft : Anonymisation, pseudonymisation and privacy enhancing technologies guidance

How to ensure anonymisation is effective? The ICO is calling for views on its updated draft guidance on anonymisation, pseudonymisation and privacy enhancing technologies. ICO are sharing their thinking in stages to ensure they gather as much feedback as possible to help refine and improve the final guidance, which will carry out a formal consultation. In […]

Read More…

When can we refuse to comply with a SAR (Subject Access request) ?

A lot of companies are receiving SAR’s almost every day. Not all of the SAR’s are relevant and a lot of them might be from the people that are issuing them for a private reasons of to gain some financial revenue. Check this article and find out what are the situtations that you can refuse […]

Read More…

Children code came into force in September- What’s next ?

The transition year is up and the Children’s code came fully into force on 2 September. It’s a ground breaking code that creates a better internet for children by ensuring online services likely to be accessed by children, respect a child’s rights and freedoms when using their personal data. As you’d expect it’s already having an impact […]

Read More…

How should you write a consent request and what information it should contain?

How should you write a consent request? Consent requests need to be prominent, concise, easy to understand and separate from any other information such as general terms and conditions. Article 7(2) says: “If the data subject’s consent is given in the context of a written declaration which also concerns other matters, the request for consent […]

Read More…

GDPR Regulations for CCTV , Photography and Video equipment and drones.

CCTV In general, CCTV is directed at viewing and/or recording the activities of individuals. Therefore, most uses of CCTV by organisations or businesses will be covered by the DPA. The ICO has also issued a code of practice that provides recommendations on the use of CCTV systems to help organisations comply with the DPA. CCTV […]

Read More…

Transferring personal data by USB device

USB devices offer a convenient way to transfer data between two computers. However, their small physical size and large data capacity means that large volumes of personal data can be lost or stolen with relative ease. Furthermore, if personal data is not securely wiped from USB devices prior to reuse there is a possibility that […]

Read More…

What is a DPIA(Data Protection Impact Assesment) and why are DPIA’s important?

What is a DPIA? A DPIA is a process designed to help you systematically analyse, identify and minimise the data protection risks of a project or plan. It is a key part of your accountability obligations under the GDPR, and when done properly helps you assess and demonstrate how you comply with all of your data […]

Read More…

The Information Commissioner’s Office (ICO)

The ICO is the UK’s independent authority set up to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals. The ICO is responsible for: Promoting good practice in handling personal data and giving advice and guidance on data protection. Ensure data controllers pay the appropriate data protection fee and […]

Read More…