No! well in the words of a very famous Stars Wars character …Or possibly, you should be. In this blog we try and unravel what’s going on and more importantly what has been set in stone and what is still up in the air. We are going to answer some of the fundamental questions that […]
Why the UK may not get a GDPR adequacy ruling and what that really means. Picture the scene You are a UK based business but you have some customers/clients from the EU, EEA and or EFTA (Europe). At the moment under the banner of the GDPR you can legally process EU personal data provided you […]
What is the big deal about Privacy Shield? Over 5000 US companies were certified under the Privacy Shield (PS) framework enabling them to process EU Personal data. That is 5000+ organisations who can no longer count on Privacy Shield for EU Personal Data International Transfers. It became illegal under EU law for any EU Controller […]
Privacy Shield Ruling On the 16th July 2020 the Court of Justice of the European Union ruled that Privacy Shield does not provide a safe mechanism for transfers of personal data outside of Europe to the US. The ruling became effective immediately and therefore any organisation whose data transfers to the US relied on Privacy Shield […]
Pre Covid 19 a little bit of home-working for staff was beneficial for both mind and spirit. Advantages include a very short commute, familiar and comfortable surroundings. You normally don’t have to dress up and you aren’t as easily distracted by colleagues at your desk. Some businesses have always actively encouraged regular homeworking, it helps […]
Find out why now might be exactly the right time to think about a Remote GDPR Audit We can complete a Remote GDPR Audit for your business whilst your staff are working from home. Yes, it may seem like a crazy notion, and yes, we also admit that many companies will have put GDPR right […]
Dixons Carphone Warehouse get maximum ICO fine and potential PCI Fines So DSG or colloquially Dixons Carphone Warehouse has managed to avoid a hefty fine from the Information Commissioner. Apparently, the assessment was against the old Data Protection Act 1998 rather than the more punitive GDPR. Much of the issue was related to PCI DSS […]
Something for Nothing It’s not often that you get something for nothing. Not from consultancies at least I hear you say. And you would be right, but consultants need to eat too. This something for nothing isn’t really ours to give away but it might just save you some money, or better a fine or […]
Do I need an EEA Representative? One of the most overlooked areas of the General Data Protection Regulation seems to be that of EEA Representation. If you are a non-EU business and don’t know what we are talking about then we prove point.
Or any other personal data breach for that matter. The very recent £183 million fine imposed on British Airways for their data breach has brought to light an issue with the GDPR and how to go about enforcing it.