As a data protection professional I often get asked what the most important aspects of data protection are. There are many things in the regulation which resonate for me and help me shape my advice to clients but, it is difficult to list which are most important as the answer is reliant on the context. […]
First 100 days of a data protection project; planning for success what to cover Read More »
Now more than ever businesses are collecting, storing, and processing vast amounts of personal data. Ensuring the protection of this data is not just a legal obligation but also a critical trust factor for customers. This is where Data Protection Impact Assessments (DPIAs) come into play. In this blog, we’ll explore what a DPIA is,
Understanding DPIA: A Crucial Component for Data Protection Read More »
In the realm of data protection, the concept of an “data subject access request” holds significant importance. As data privacy regulations become increasingly stringent worldwide, understanding what a request entails and how to handle it is crucial for individuals and organisations alike. What is an Access Request? A subject access request, often referred to as
DSAR – The Importance of Subject Access Requests Read More »
In today’s digital landscape, data breaches have become a pervasive threat. They can have devastating consequences for individuals, businesses, and even governments. This blog outlines the different types of data breaches, explores the potential impacts, and details the information needed to report a data breach. Types of Data Breaches Data breaches come in various forms,
Understanding Data Breaches: Types, Reporting Requirements and Impacts Read More »
‘Reactive’ and ‘data protection’ are two phrases that no organisation wants to have sitting near each other, but with businesses facing more and more pressures, how can adopting a ‘data protection by design’ approach help organisations move to, and sustain a proactive approach to data protection? What is Data Protection by Design? Data Protection by
With organisations facing growing challenges to ensure compliance with data protection laws and evidencing accountability a risk register is essential to identify, assess, prioritise and mitigate risks related to the handling, processing, and storage of personal data. Eight components of a Risk Register: Benefits of a risk register include: In using a risk register organisations
Data Protection Compliance: The Importance of a Risk Register Read More »
A Record of Processing Activities (ROPA) is a document that provides a comprehensive overview of how personal data is collected, processed, stored and transferred within an organisation. For some organisations it is a current EU and UK GDPR obligation but equally, a well-maintained ROPA brings a multitude of benefits to an organisation. The Data Protection
Making a record of processing activities (ROPA) work for your organisation Read More »
During the DPN webinar on 21st February panellists Mark Roebuck, Robert Bond, Louise Garrett-Cox and Simon Blanchard took on a host of topics and questions ranging from “what are data assets and IARs,” to “how do I see the value of a ROPA and gain stakeholder buy-in”. Here we summarise 5 key takeaways from the
IAR, ROPA and Stakeholder buy in – 5 key takeaways from the DPN webinar Read More »
As a business the task of safeguarding valuable assets has, and continues to become more challenging with technology and information continually evolving.
Maximising Security and Efficiency: The Importance of an Information Asset Register Read More »
If you would like to ask more questions or to arrange training, complete the form below and we will respond shortly.
