GDPR or General Data Protection Regulation is a set of data protection laws passed by the European Union. They are enforced upon any company utilizing or handling data coming from EU consumers, regardless of where the company is based. Failure to comply results in harsh penalties and fines. These penalties are some of the steepest […]
What are the Penalties for GDPR Violations? Read More »
For individuals, subject access requests (SARs) are incredibly easy to make. They can be made in any form, including electronically (social media requests count). They don’t have to include the words “subject access request” or reference the Data Protection Act or GDPR. They can be made to anyone in the organization they want a copy
Business How-to: Responding to a Subject Access Request (SAR) Read More »
The General Data Protection Regulation has been impacting data strategy in the EU and beyond since 2018. GDPR gives individuals more control than ever over how their data is used and stored by businesses. This means that businesses have to be more vigilant than ever over what data they collect, how they store it, and
The GDPR Compliance Checklist Read More »
The 2018 enactment of the EU-wide GDPR created the need for organisations to radically re-think how they collect, store, and use the personal information of those they interact with. Various changes were mandated, amongst them was the need for some organisations to appoint a Data Protection Officer (DPO). Under the GDPR, you must appoint a DPO if:
The challenging role of the in-house DPO Read More »
Maintaining relationships with customers is a priority for most businesses, assuming they want those relationships to remain positive and productive. Today, most of these relationships are nurtured over email and SMS messaging given they are a cheap and generally effective means of reaching a customer through devices they usually have about their person. Following the
The do’s and don’ts of customer comms during the pandemic Read More »
Pubs opened at the weekend, brilliant news for the industry. But in addition to creating enough space to allow for the 1m+ distancing rule, many businesses will need to brush up on their data protection awareness. The government’s high-level guidance for pubs, bars and restaurants is asking owners and operators in England to keep a
Data Advice For The Hospitality Industry Read More »
How the hospitality industry can comply with data protection law as lockdown eases On June 23rd, Britons received the news that so many were eagerly anticipating; lockdown restrictions were finally to be eased. As of July 4th, we are allowed to return to their pubs, bars, and restaurants. However, there are certain quid pro quos
I’ll have a side order of data security please! Read More »
Monday marks the two-year anniversary of the GDPR (General Data Protection Regulation). Strict regulations were introduced on May 25th 2008 on how organisations should handle customer data. Why then, even after two whole years of GDPR compliance, do organisations collect and store more customer data than they need? A recent Netwrix survey found that 61
Do businesses still collect and store more data than they need? Read More »
Outsourcing firm Serco – who are training staff to trace cases of Covid-19 for the UK government – has apologised after accidentally sharing the email addresses of almost 300 contact tracers. The error was made when it emailed new trainees to tell them about training. The company has so far recruited 21,000 staff, some of
Serco apologises for sharing contact tracers’ email addresses Read More »
Low-cost airline EasyJet has admitted that a “highly sophisticated cyber-attack” has affected approximately nine million customers. Email addresses and itineraries were stolen and that 2,208 customers had also had their credit card details “accessed”. It is thought the attackers had access to the data of customers who booked flights from 17 October to 4 March
EasyJet admits data breach affecting 9 million customers Read More »
