What to expect with the new ICO data subject access request guidelines
The ICO recently published new guidelines to further explain the rules regarding a data subject...
The Data Protection Blog
3 steps you need to take for a Legitimate Interest assessment
A Legitimate Interest Impact Assessments (LIA) is a specific type of risk assessment, and as...
POPIA: a quick overview of the South African Data Privacy Law.
After a long wait POPIA is now here.
South Africa promulgated the Protection of Personal...
Lessons from the Outcome of the ICO’s Audit of the Department for Education
When the Department for Education (DfE) received complaints regarding how the department managed...
GDPR: Even the Government’s have to comply. Weekly Digest 42
When looking over what happened this week, there were a couple of things I could talk about: ...
Why and How, our software now has a Data Protection Impact Assessment Feature.
What is a DPIA?
A DPIA (Data Protection Impact Assessment) is executed by an...
Data Protection and your employees. Weekly Digest 41
The Data Protection Authority of Hamburg (HmbBfDI) fined H&M, one of the largest global clothing...
Social Dilemma; Why they do not care about data privacy and protection regulations?
Social media has become an undeniable force in people’s lives today, and this applies in nearly...
The 3 questions you should ask before doing a data mapping
We tend to think of data as relatively static. Systems might be updated from time to time, but...
5 types of businesses which are data processors and data controllers
Reflecting back on my post from Friday on joint controllers, I thought it might be useful to...
Data Processing Agreements vs Joint Controller Agreement, Weekly Digest 40
On September 7, 2020 the European Data Protection Board (EDPB) publish guidelines on “data...
Data protection, the NHS and the COVID-19 app. Where are we at?
The Data Protection Act of 2018 (General Data Protection Regulation) came into force to protect...