Our GDPR articles offer in-depth coverage of this landmark regulation. We focus especially on the UK perspective. From compliance strategies to interpretations of specific articles, we provide guidance to help you navigate the complexities of GDPR and its impact on your day-to-day operations.
What is a data breach? A data breach occurs when an unauthorized person gains access to your personal information. This could be by hacking into a system that stores your personal information, for example hacking into a database or computer system. Or it could be by unlawful access – where a person uses their access …
Good news for marketers – unless you’re not following the law already 💸 The UK government recently published the outcome of their consultation on the Data Reform Bill (now known as the Data Protection and Digital Information Bill) – a collection of sweeping policy changes “designed to make the UK the best place for businesses …
UK GDPR and EU GDPR have introduced some stiff penalties for poor data protection practices. Prior to the introduction of these regulations, data protection fines didn’t really reflect the severity of poor compliance. For example, in the UK the Data Protection Act which provided far weaker rules on how data must be protected than the …
The Log4j 2 exploit will have affected millions of organisations, potentially exposing customer data to hackers. As IT teams scramble to fix the patch, we ask what implications this may have for GDPR compliance? What security issue? A critical vulnerability has been discovered in Log4j 2, an open-source Java package used on Apache servers to …
If you are using Google Forms to process the personal data of UK or EEA (European Economic Area) based citizens then you may be wondering if Google Forms is GDPR compliant? This is a good question to be asking, as poor GDPR compliance can lead to a fine, of up to 4% of your turnover …
To comply with UK GDPR and EU GDPR it is necessary to understand the definition of personal data under GDPR. This is an area where there is often some confusion. While most of us understand that information like a name, or date of birth could be considered personal. Other information that could be linked to …
Google Workspace has become a dominant force in the business productivity software market. The product, formerly known as G-Suite has reached mass adoption in the market, shaking off fierce competition from rival Microsoft’s Office365 – which has been arguably slow to the market, considering their prior dominance with the Microsoft Office suite. Official statistics on …
A round-up of some of the most recent data privacy decisions led by data protection authorities in Europe. United Kingdom The High Court of England and Wales held that controllers and processors outside of the EU that nominate a representative under Article 27 GDPR cannot outsource liability for breaches of the GDPR. The representative can …
There are two tiers of fine under the EU-GDPR & UK-GDPR. The tiers are based on the type of violation and the type of data processing concerned. Most organisations fall within the lower-level tier. How is the value of the fine decided? Supervisory authorities consider multiple factors when deciding on the value of the fine …
Worried about being personally liable for 20 million euro fine? (errr, do you guys take card?) We’ve got good news, it’s highly unlikely, unless your side hustle is a one-employee Facebook clone. But it’s not totally straightforward. It is quite easy to find yourself liable for some smaller fines. So in this article we’ll explore …
