GDPR

What is a Data Controller?

GDPR defines a data controller as: “a natural or legal person, which alone or jointly with others, determines the purposes and means of personal data processing.” … The data controller will decide the purpose for which personal data is required and what personal data is necessary to fulfil that purpose The data controller determines the purposes for which and the means by which personal data is processed. So, if your company/organisation decides […]

What is a Data Controller? Read More »

Is Google GDPR Compliant?

Sara Frost

The GDPR strengthens the rights that individuals have regarding personal data relating to them and seeks to unify data protection laws across Europe, regardless of where that data is processed. Google’s website makes a very clear statement about GDPR: “You can count on the fact that Google is committed to GDPR compliance across Google Cloud

Is Google GDPR Compliant? Read More »

GDPR Certification

Sara Frost

GDPR certification refers to becoming legally compliant with the European Union’s (EU) General Data Protection Regulation (GDPR). This is a feature of GDPR law that allows people or entities to receive certification from approved certification bodies to show both the EU and consumers that they are in compliance with GDPR. Certification is scalable and can be different for organizations of differing size and

GDPR Certification Read More »

What is the Right to Be Forgotten?

Sara Frost

The implementation of the General Data Protection Regulations (GDPR) means that organizations must protect the personal data of EU citizens and covers any data that could feasibly be used to identify an individual. This can include medical records, genetic information or economic information. The Right to be Forgotten, also known as right to erasure, is

What is the Right to Be Forgotten? Read More »

What constitutes personal data for GDPR?

Sara Frost

Many people are still unsure what exactly the term ‘personal data’ refers to, even though it forms the core of the EU General Data Protection Regulation (GDPR). The EU-wide GDPR, which was brought into UK law on 25 May 2018, broadened the definition of what counts as personal data. When we think of personal data, things like name,

What constitutes personal data for GDPR? Read More »

What are the 7 GDPR Principles

Sara Frost

There are seven key GDPR principles: Lawfulness, fairness and transparency. Purpose limitation. Data minimisation. Accuracy. Storage limitation. Integrity and confidentiality (security). Accountability. Lawfulness, fairness and transparency The first principle of GDPR requires that the data controller provide the data subject with information about his/her personal data processing in a concise, transparent and intelligible manner, which

What are the 7 GDPR Principles Read More »

Is Facebook GDPR compliant?

Sara Frost

GDPR was implemented to help protect people’s privacy. One of the most important concerns for people today is their privacy and the risk of losing important personal information. Research carried out on 7,500 consumers in France, Germany, Italy, the UK and the U.S by RSA Data Privacy & Security Report revealed that 80% of consumers said lost

Is Facebook GDPR compliant? Read More »

How will GDPR be affected post Brexit?

Sara Frost

Ever since the referendum to leave the EU in 2016, pundits have been speculating as to how Brexit will affect Britain’s General Data Protection Regulation (GDPR). Even though the UK is planning to leave the EU, the UK will still need to comply with the GDPR. One reason for this is the cross-over period between

How will GDPR be affected post Brexit? Read More »

What are my options for maintaining GDPR compliance?

Sara Frost

Businesses must acknowledge that being transparent about how data is used and protected is now required by law. Each organization (including charities and public sector entities) must define a scope for which they collect specific data. You should only collect personal information that is needed to provide the service or product and nothing more. Also,

What are my options for maintaining GDPR compliance? Read More »

DPO vs GDPR Software: the benefits and drawbacks of both

Sara Frost

DPO The GDPR introduces a duty for you to appoint a data protection officer (DPO) if you are a public authority or body, or if you carry out certain types of processing activities. DPOs assist you to monitor internal compliance, inform and advise on your data protection obligations, provide advice regarding Data Protection Impact Assessments

DPO vs GDPR Software: the benefits and drawbacks of both Read More »

Kickstart your compliance (before it kicks you!)