Before you can get into the detail of efficiently running a privacy program, most businesses go through one crucial step: making their executive team care and putting additional resources in.... read more →
For some, a Data Protection Officer (DPO) is a new role within their organisation. Others, like public authorities, have employed DPOs for years and they are used to working together... read more →
Ever had to chase someone to complete a course, assessment or just respond to your questions about data protection? You are definitely not alone. Getting people to contribute and engage... read more →
There is great debate in the DPO community as to whether it is better for a business to have an in-house DPO, or an external one. I could settle it... read more →
So you’ve got your records of processing in order, your training set up, and vendors are all under control. That’s great, but only applies to whatever day you last did... read more →
There are two reasons why you may appoint a DPO; firstly, because the GDPR says you need one, and secondly, because you don’t need one, but you want one. I’m... read more →
Organizations based outside of the EU or EEA, but subject to the GDPR, are required to appoint an EU representative (EU Rep), according to Article 27 GDPR. In practise, due... read more →
The principle of transparency requires that controllers are open and honest about what they do with data subjects’ personal data and that they communicate that in a simple way. The... read more →
The GDPR makes salespeople and marketers nervous because it’s hard to understand what the legislation means for daily sales and email marketing activities, which is a fair concern. First, it’s... read more →