What the ICO Says About Data Protection Refresher Training
ICO requires data protection refresher training at "appropriate intervals." Learn frequency recommendations, what to include, and how to document compliance…
GDPR
Our GDPR articles offer in-depth coverage of this landmark regulation. We focus especially on the UK perspective. From compliance strategies to interpretations of specific articles, we provide guidance to help you navigate the complexities of GDPR and its impact on your day-to-day operations.
Does my business need to prepare for changes to Data Protection in the UK via the Data (Use and Access) Act 2025?
The Data Use and Access Act 2025 amends UK GDPR with changes rolling out through June 2026. Learn what's changed,…
Do I need to train my team about data protection – what does the ICO say in 2025?
If you handle personal data in your organisation, you’ve probably asked yourself: am I legally required to train my staff…
ICO fines Care Home Director for Deleting Data: The Warning Every Manager Should Read
On 3 September 2025, Jason Blake, 56, director of Bridlington Lodge Care Home in Yorkshire, was ordered to pay £1,100…
The UK Data (Use and Access) Act 2025: What You Actually Need to Know
The UK has new data protection laws. Again. But before you start panicking about another massive compliance overhaul, take a…
Understanding GDPR Data Subject Access Requests: A Practical Guide for Organisations
One important mechanism that empowers individuals (data subjects) under GDPR is the Data Subject Access Request (DSAR).
UK Home Office Receives Enforcement Notice Over Migrant GPS Tagging Data Risks
This action follows discussions with the ICO regarding a controversial pilot program that tracked the GPS locations of up to…
Exciting updates to our free GDPR training course: streamlined access and enhanced user experience
At Measured Collective, we are always striving to provide the best possible learning experience for our community of over 5,000…
Canal+ fined €600k for GDPR breaches including failure to report data breach
French broadcasting company Groupe Canal+ was recently fined €600,000 by the French data protection authority (CNIL) for multiple violations of the EU’s…
GDPR Legitimate Interests Assessment: The Complete Guide
It's one of the most flexible lawful bases under GDPR but applying it comes with some caveats.
What is considered “disproportionate effort” under GDPR?
Under Article 13 of GDPR you must give data subjects information about your data processing practices, this is commonly known…
Do I need ongoing GDPR training?
Without good training, staff will lack the awareness required to complete their day to day tasks in a GDPR compliant…
How to make any form GDPR compliant
Forms are a practical way to gather data but can also be a GDPR compliance risk if not set up…
Does GDPR apply to b2b data?
For the purposes of this article we are defining b2b data as personal data which has been collected within a…
Mailchimp & GDPR: Complete Compliance Guide for UK Businesses
Marketers should be aware that using these tools and their features can cause a legal compliance headache when it comes…
GDPR Training Requirements: Who needs to do GDPR training?
GDPR might not be everyone’s favourite topic but it is important. With financial penalties for non-compliance soaring over the last…
Can I get compensation for a GDPR Data Breach?
For companies that breach the GDPR this means they can be liable for a financial penalty paid to the Supervisory…
How the Data Protection and Digital Information Bill could change marketing in the UK
The UK government recently published the outcome of their consultation on the Data Reform Bill (now known as the Data…
The Biggest GDPR Fines So Far (2026)
UK GDPR and EU GDPR have introduced some stiff penalties for poor data protection practices.
What does the biggest security exploit of the year mean for your GDPR compliance?
A critical vulnerability has been discovered in Log4j 2, an open-source Java package used on Apache servers to enable an…