View How do I find out how compliant I am?  What do I need to do next?

How do I find out how compliant I am? What do I need to do next?

The first step is to recognise that something needs to be done, this shouldn’t be ignored and should be done as soon as possible. The next step is to assess your current situation to establish how compliant you are and what to do next – “Where are we now? “And where do we need to…

read more


View What are the big risk areas?

What are the big risk areas?

This is one of the hardest areas to address, the areas and size of risk will vary for every organisation – this really needs to be evaluated by a proper Risk Assessment. One thing to bear in mind is that the risk should be evaluated from the point of view of the individual and should be…

read more


View What is personal data?

What is personal data?

Article 4 of the GDPR uses quite a broad definition of personal data as: “… any information relating to an identified or identifiable natural person (“data subject”); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data,…

read more


View What is a Personal data breach?

What is a Personal data breach?

A personal data breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data. This includes breaches that are the result of both accidental and deliberate causes. It also means that a breach is more than just about losing personal data. A personal…

read more


View What is a Data Protection Impact Assessment (DPIA)?

What is a Data Protection Impact Assessment (DPIA)?

A Data Protection Impact Assessment (DPIA) is a process to help you identify and minimise the data protection risks of a project. You must do a DPIA for processing that is likely to result in a high risk to individuals. It is also good practice to do a DPIA for any major project which requires…

read more


View What are the benefits of being compliant with the GDPR?

What are the benefits of being compliant with the GDPR?

As the protection of privacy becomes ever more of an issue for individuals, having a good reputation in this respect will become a differentiator and will allow customers to make a more informed choice based on trust. – The processes for ensuring compliance should also support good information governance, while generating procedural and operational efficiencies,…

read more


View What is a DPO?

What is a DPO?

DPOs assist you to monitor internal compliance, inform and advise on your data protection obligations, provide advice regarding Data Protection Impact Assessments (DPIAs) and act as a contact point for data subjects and the supervisory authority.    

read more


View What does a Data Protection Officer do and who can be a DPO?

What does a Data Protection Officer do and who can be a DPO?

Organisations must appoint a DPO if they are a public body, or process sensitive data on a large scale or complete regular and systematic monitoring of data subjects. Deciding what is meant by large scale is open to interpretation but organisations would be advised to err on the side of caution. Earlier thoughts during the…

read more


View Can we contract out the role of the DPO?

Can we contract out the role of the DPO?

You can contract out the role of DPO externally, based on a service contract with an individual or an organisation. It’s important to be aware that an externally-appointed DPO should have the same position, tasks and duties as an internally-appointed one. More information on our DPO Managed Service

read more


  1. Pages:
  2. 1
  3. 2