The European Commission published a draft decision and some guidance on standard contractual clauses for transferring personal data outside the European...
A gap analysis can be a helpful way to keep your company compliant, but these complicated procedures often lay the groundwork for errors. Some mistakes...
How your company complies with GDPR has a lot to do with how aware your individual employees are. Your staff doesn’t need to be reminded of […]
After taking a week’s breather, it’s again an action by the ICO that draws my attention. On Tuesday, the ICO issued an enforcement notice to Experian. […]
Corporations rely on their blogs for any number of benefits. Not only is it a smart way to improve your search rankings, but it’s also an […]
The ICO recently published new guidelines to further explain the rules regarding a data subject access request (DSAR). This was welcome news for a number...
A Legitimate Interest Impact Assessments (LIA) is a specific type of risk assessment, and as such, needs to be treated with some degree of gravity. If […]
After a long wait POPIA is now here. South Africa promulgated the Protection of Personal Information Act (POPIA) on the 1st July 2020. This has been […]
When the Department for Education (DfE) received complaints regarding how the department managed its National Pupil Database, the response from the...
When looking over what happened this week, there were a couple of things I could talk about: EDPB’s guidelines on relevant and reasoned objection under...
What is a DPIA? A DPIA (Data Protection Impact Assessment) is executed by an organisation to analyse, identify and mitigate risks to personal information...
The Data Protection Authority of Hamburg (HmbBfDI) fined H&M, one of the largest global clothing retailers, €35.2 million for excessive monitoring of...