In a recent blog we explored the relationship between data protection compliance and ‘box ticking’. But how can that knowledge be used to achieve a more compliant organisation? When the correct level of information is collected the outputs will improve your knowledge, and be very useful to your role in data protection and help evidence […]
How box ticking can help achieve a more compliant organisation Read More »
Quite often we see posts or articles about how data protection compliance should not become a box ticking exercise to achieve compliance but, are we looking at the bigger picture when we say this? Does ‘box ticking’ have its place in data protection compliance? To understand and answer this, we need to first ensure the
Data Protection Compliance – the home of box ticking, and rightly so Read More »
There is a multitude of reasons that organisations collect data from enabling personalised marketing experiences, improving customer experience, aiding product development and remaining compliant are just a handful but, are you managing and using that data in the way it was intended when first collected? In this blog we will guide you through 7 crucial
How to ensure your data is compatible with the purpose for which it was collected Read More »
The protection of personal data is a significant element of any information security ecosystem. If this ecosystem is neglected, it can have a significant impact that puts your organisation at risk of increasingly malicious threats which present an increasing risk to your business. ISO 27701 is a global privacy standard, and it demonstrates the importance
For small and medium-sized enterprises (SMEs), protecting data is crucial but can often be overlooked due to limited resources. Here are our top 10 data protection tips tailored for SMEs: 1. Educate and Train Employees 2. Develop a Data Subject Response Plan 3. Implement Strong Password Policies 4. Enable Multi-Factor Authentication (MFA) 5. Regularly Update
With data the lifeblood of the majority of organisations, protection of it is critical. Whether it be customer information, financial records, or proprietary intellectual property there is a risk of breaches, leaks, and mishandling. What is a Data Protection Risk? A data risk refers to any potential threat or vulnerability that can result in unauthorised
Data Champions can implement technology that can help DPOs manage data and protection simply and effectively The very thought of keeping up-to-date with new regulations, cyber threats and improving data protection can send shivers down the spines of companies across all sectors. Such is the threat and the sheer number of ways that personal data
‘Large-scale data processing’ is not explicitly defined despite it being used within regulation such as the General Data Protection Regulation (GDPR). The ICO themselves provide pointers but again no clear definition. This lack of definition becomes more apparent when a (Record of Processing Activities) RoPA is being completed. The RoPA module within the ProvePrivacy platform
As a data protection professional I often get asked what the most important aspects of data protection are. There are many things in the regulation which resonate for me and help me shape my advice to clients but, it is difficult to list which are most important as the answer is reliant on the context.
First 100 days of a data protection project; planning for success what to cover Read More »
Now more than ever businesses are collecting, storing, and processing vast amounts of personal data. Ensuring the protection of this data is not just a legal obligation but also a critical trust factor for customers. This is where Data Protection Impact Assessments (DPIAs) come into play. In this blog, we’ll explore what a DPIA is,
Understanding DPIA: A Crucial Component for Data Protection Read More »
If you would like to ask more questions or to arrange training, complete the form below and we will respond shortly.
Prefer to schedule a 15 minute call? Schedule call today >>
