Dixons Carphone Warehouse get maximum ICO fine and potential PCI Fines So DSG or colloquially Dixons Carphone Warehouse has managed to avoid a hefty fine from the Information Commissioner. Apparently, the assessment was against the old Data Protection Act 1998 rather than the more punitive GDPR. Much of the issue was related to PCI DSS […]
Do you consider your business to be ethical, upstanding and law abiding? Do your policies talk about employee respect, standards and behaviour, social media rules, drugs and alcohol? Does your business abide by industry standard for health and safety, distance selling, kite marks, ISO standards, even PCI? Most businesses will recognise and uphold many of […]
….is a statement that many companies seem to be making either explicitly, by looking at what they think needs to be done and thinking it doesn’t apply to them or implicitly by not even making the time and effort to find out what needs to be done.
In our latest post in our Article’s series, we look at Article 9 – Processing of special categories of personal data (sometimes this is referred to as sensitive personal data).
Can I demonstrate freely given, specific, informed and unambiguous consent? In our fourth “The Articles” Series post we look at Article 7 – Conditions for consent. This follows on from our previous post on Lawfulness of Processing that concluded “consent should be the basis for processing PII for behavioural advertising”.
Your compliancy depends on your data processors, and their processors… GDPR Auditing is a an established company providing auditing, training and consultancy services focused on the EU General Data Protection Regulation. Its not just your business that needs to be GDPR compliant, your service providers if processing personal Identifiable Information (PII) for your business also […]