As experts in data protection, privacy and the GDPR, we wanted to share our knowledge with you to ensure your compliance journey is as simple as possible. With a clear understanding, data protection best practice will become a natural part of your organisation’s way of working - a benefit to you and your business.
So take a look over our GDPR and data protection resources below.
The Privacy Guy – Privacy Promise 4 – Safe Sharing
We all know someone who overshares, right? But, in such situations it isn’t your personal information the person is oversharing, it is theirs. In the world of privacy and data protection, it is our personal information that is being overshared. Sometimes it is sensitive personal information. And that’s far from great. In fact, it is against the law.
When to appoint a Data Protection Officer
Appointing a data protection officer is much more than simply giving someone a title. The decision whether or not to appoint a data protection officer is a serious one and must be considered carefully. You need to know why you may need to appoint one. You need to know what you should look for in a data protection officer. And you need to know the risks if you appoint the wrong one.
When and how to notify a data breach
Almost all organisations have had a data breach. Some of them know they have had a data breach. Most probably don’t. People tend to think that a data breach is caused by a hacker breaking into an organisation’s systems and gaining access to customer personal information for malicious purposes. The reality is that personal data breaches are far more likely to be the result of careless mistakes by employees than the work of hackers. In fact, 90% of UK data breaches are caused by human error.
The Privacy Guy – Privacy Promise 2 – Inventory
The second of our Eight Privacy Promises. To comply with privacy rules including the GDPR and the CCPA your organisation needs an inventory of personal information. This basic (but sometimes difficult) step is one of the cornerstones of establishing and maintaining an effective privacy compliance programme. However, keeping track of your personal information is not as easy as keeping track of your employees, or your office equipment. Personal information moves quickly and easily and is often kept in multiple locations.
The Privacy Guy – Privacy Promise 1 – Awareness
The first of our Eight Privacy Promises. It is crucial to establishing and maintaining a culture of continuous compliance. Without awareness, people will not understand. If they don’t understand, they won’t care. And if they don’t care, people will not do what is needed to protect personal information and prevent a data breach.
How to comply with the CCPA
Let’s get one thing straight – privacy protection is not going away. California is the first US State to give its residents a high level of protection and control over their personal information. It is not going to be the last. And protecting individuals’ rights over their information is a worldwide phenomenon driven by genuine concerns.
Chapter 8 : Are you sure you’re secure?
In our previous blog post, we explained that one of the two most important things in making sure that you…
Chapter 7 : Are you sure you build products and services with privacy in mind?
Privacy has gone from something that virtually nobody cared about to something that is on the news daily. Organisations used…