Scott Dooley

Scott Dooley is a seasoned entrepreneur and data protection expert with over 15 years of experience in the tech industry. As the founder of Measured Collective and Kahunam, Scott has dedicated his career to helping businesses navigate the complex landscape of data privacy and GDPR compliance. With a background in marketing and web development, Scott brings a unique perspective to data protection issues, understanding both the technical and business implications of privacy regulations. His expertise spans from cookie compliance to implementing privacy-by-design principles in software development. Scott is passionate about demystifying GDPR and making data protection accessible to businesses of all sizes. Through his blog, he shares practical insights, best practices, and the latest developments in data privacy law, helping readers stay informed and compliant in an ever-changing regulatory environment.

The UK Data (Use and Access) Act 2025: What You Actually Need to Know

June 25, 2025 Scott Dooley

The UK has new data protection laws. Again. But before you start panicking about another massive compliance overhaul, take a breath. This isn’t GDPR 2.0 – it’s more like GDPR 1.1. The Data (Use and Access) Act 2025 became law on 19 June 2025¹, and while it sounds scary, most small and medium businesses won’t …

Understanding GDPR Data Subject Access Requests: A Practical Guide for Organisations

March 11, 2025March 10, 2025 Scott Dooley

One important mechanism that empowers individuals (data subjects) under GDPR is the Data Subject Access Request (DSAR).

Does WordPress use cookies?

March 13, 2025April 12, 2024 Scott Dooley

In light of data protection laws like GDPR and the ePrivacy Regulations (PECR) you may be concerned about whether your Wordpress website is placing cookies on your visitors devices – and whether you should be concerned about this.

UK Home Office Receives Enforcement Notice Over Migrant GPS Tagging Data Risks

March 13, 2025March 25, 2024 Scott Dooley

This action follows discussions with the ICO regarding a controversial pilot program that tracked the GPS locations of up to 600 migrants who entered the UK via unauthorised routes and were in immigration bail.

Exciting updates to our free GDPR training course: streamlined access and enhanced user experience

March 13, 2025February 24, 2024 Scott Dooley

At Measured Collective, we are always striving to provide the best possible learning experience for our community of over 5,000 people who have joined us to deepen their understanding of data protection and GDPR compliance.

GDPR legitimate interests assessment guide & worked example

March 13, 2025December 27, 2022 Scott Dooley

Lazy with her hands out balancing the risks of applying legitimate interests to data processing

It’s one of the most flexible lawful bases under GDPR but applying it comes with some caveats.

Do I need ongoing GDPR training?

March 27, 2025September 1, 2022 Scott Dooley

Without good training, staff will lack the awareness required to complete their day to day tasks in a GDPR compliant manner. They are then more likely to make mistakes which can lead to fines or enforcement action.

How to make any form GDPR compliant

March 13, 2025August 31, 2022 Scott Dooley

Person completing online forms from laptop

Forms are a practical way to gather data but can also be a GDPR compliance risk if not set up correctly.

Mailchimp & GDPR: What you need to know to improve GDPR & PECR compliance

March 14, 2025August 22, 2022 Scott Dooley

Marketers should be aware that using these tools and their features can cause a legal compliance headache when it comes to data privacy laws like GDPR because of the sheer volume of personal data and data transfers required to make these campaigns work.

How the Data Protection and Digital Information Bill could change marketing in the UK

March 14, 2025July 16, 2022 Scott Dooley

Westminster London with Data Reform Bill design overlays

The UK government recently published the outcome of their consultation on the Data Reform Bill (now known as the Data Protection and Digital Information Bill) – a collection of sweeping policy changes “designed to make the UK the best place for businesses and scientific institutes to undertake data-driven activity”.

Article categories