Author name: Mark Roebuck

Mark Roebuck (MBA, MSc) is a Data Protection Consultant specializing in scalable GDPR and Information Governance solutions. With nearly two decades of experience, he helps organizations bridge the gap between complex technology and regulatory compliance.

Data Protection by Design – the key principles

Data Protection by Design – the key principles

‘Reactive’ and ‘data protection’ are two phrases that no organisation wants to have sitting near each other, but with businesses facing more and more pressures, how can adopting a ‘data protection by design’ approach help organisations move to, and sustain a proactive approach to data protection? What is Data Protection by Design? Data Protection by […]

Data Protection by Design – the key principles Read More »

The Importance of a Risk Register

Data Protection Compliance: The Importance of a Risk Register

With organisations facing growing challenges to ensure compliance with data protection laws and evidencing accountability a risk register is essential to identify, assess, prioritise and mitigate risks related to the handling, processing, and storage of personal data.  Eight components of a Risk Register: Benefits of a risk register include: In using a risk register organisations

Data Protection Compliance: The Importance of a Risk Register Read More »

Making a record of processing activities

Making a record of processing activities (ROPA) work for your organisation

A Record of Processing Activities (ROPA) is a document that provides a comprehensive overview of how personal data is collected, processed, stored and transferred within an organisation. For some organisations it is a current EU and UK GDPR obligation but equally, a well-maintained ROPA brings a multitude of benefits to an organisation. The Data Protection

Making a record of processing activities (ROPA) work for your organisation Read More »

IAR, ROPA and Stakeholder buy in

IAR, ROPA and Stakeholder buy in – 5 key takeaways from the DPN webinar

During the DPN webinar on 21st February panellists Mark Roebuck, Robert Bond, Louise Garrett-Cox and Simon Blanchard took on a host of topics and questions ranging from “what are data assets and IARs,” to “how do I see the value of a ROPA and gain stakeholder buy-in”.  Here we summarise 5 key takeaways from the

IAR, ROPA and Stakeholder buy in – 5 key takeaways from the DPN webinar Read More »

How to effectively manage data assets

How to effectively manage data assets (Webinar recording) Unsure how to manage information assets and personal data within your organisation? In this webinar panellists covered a range of topics including: What are data assets? IARs ROPAs Stakeholder engagement https://youtu.be/sE7LloNQNu4?si=teXHDwX2xSHJ8-N0 Why use ProvePrivacy to manage personal data and privacy risks? Book a demo today Testimonials What

How to effectively manage data assets Read More »

Data Subject Rights | ProvePrivacy | Article Image 10

Data Subject Access Requests

What is a Data Subject Access Request? A data subject access request is key to data subjects gaining access to their data.  This is a fundamental right of individuals under the Data Protection Act (2018). Whatever business you are in, if you hold personal data, you will probably receive a Data Subject Access Request (DSAR) at some

Data Subject Access Requests Read More »

Processing Activities | ProvePrivacy | Article Image 27

Sensitive Personal Data

What is Sensitive Personal Data Under the Data Protection Act 2018? Sensitive Personal Data, also known as Special Category Data, is personal information that is inherently more private and requires higher levels of protection. Under the Data Protection Act (2018) and GDPR, processing this data is prohibited unless an organization meets specific legal conditions, as

Sensitive Personal Data Read More »

Scroll to Top

Contact us

If you would like to ask more questions or to arrange training, complete the form below and we will respond shortly.

Prefer to schedule a 15 minute call? Schedule call today >>

See our Privacy Statement for more details.