Current News Stories

No Deal Brexit – implications for Data Protection

December 3rd, 2018

In our blog today, we look at the implications for Data Protection in the event of a No Deal Brexit. An increasingly likely scenario, given the inability of the politicians in both houses, to agree on a sensible approach. A very informative article by FieldFisher explains that the EU Withdrawal Agreement seeks to ensure there […]

Read More >

Data Protection Officers (DPO)

December 3rd, 2018

In our blog today, we look at Data Protection Officers? But do you need one? Well… probably not, unless you regularly and systematically monitor data subjects on a large scale. Or you are a local authority. Ok, you don’t.   BUT you do still need someone in your practice or organisation who is responsible for ensuring […]

Read More >

Blog Series #6 – Accountability and what it means for your organisation

November 19th, 2018

In our blog today, we look at Accountability, one of the Seven Principles of GDPR and the Data Protection Act 2018. What is Accountability? Accountability is your requirement to demonstrate how your organisation or practice is compliant with the regulations. This sounds simple, but what does it really mean?  If ever audited or investigated, what […]

Read More >

Blog Series #5 – Subject Access Requests

November 19th, 2018

Right to Access using a Subject Access Requests (SAR) In our blog today, we look at a data subject’s right to access, a powerful tool for individuals who have concerns about what information organisations hold about them. Unfortunately, it can also be used for litigious purposes and such a request should be taken very seriously […]

Read More >

Blog Series #4 – Data Breach Notifications

November 6th, 2018

Data Breach notifications We have discussed in our previous blog the potential level of fines for data breaches and some common causes of these breaches. Our blog today, answers the questions of: what exactly constitutes a reportable data breach?  Whose responsibility is it to report it?  We will look at guidance from the European Data […]

Read More >

Blog series #3 – Consent

November 6th, 2018

Consent How many emails did you receive in the run up to 25th May this year about ‘opt-ins’ to receive marketing?  I, for one, enjoyed a clear out of junk mail where now, only products and services I am actually interested in, arrive in my Inbox.  Not only that, but now organisations have to take […]

Read More >

Blog Series #2 – Operational Risks and Penalties

October 22nd, 2018

We all know about the potential for huge fines from the new EU General Data Protection Regulation (GDPR) and now the UK Data Protection Act 2018.  These have been grabbing headlines for over a year in the lead up to Implementation-Day of 26th May 2018. Most headline penalties are based on the highest maximum level […]

Read More >

Our Practical and information blog series to complete 2018

October 22nd, 2018

We all know what happened on 26th May 2018…. the EU General Data Protection Regulation (GDPR) came into force across the EU. What else happened?  Well, on the same day, the UK introduced the UK Data Protection Act 2018 (DPA) which replaced the previous Data Protection Act 1998, and you will be assured to know […]

Read More >

The new reality for Data Processors

September 24th, 2018

Interesting article from Fieldfisher Law on how certain companies – especially those who make use of their customers’ data – are now considering that the new GDPR constraints placed on them by being Data Processors are too restrictive.  They are now re-contracting themselves as Data Controllers.  They have a similar level of liability – so why […]

Read More >

Preparing for a no-deal Brexit?

September 14th, 2018

In the unlikely event of a no-deal Brexit, the EU may not grant ‘adequacy’ status to the UK allowing the continued free flow of personal data. This means that contracts will need to be amended to ensure there is a lawful basis to transfer data from the EU to the UK. One more thing to […]

Read More >
1 2