The DPO must be independent, but how?

The EU GDPR compliance requirements call for certain organisations to appoint a data protection officer (DPO). Even where such an appointment is not mandatory, it is often still advisable for organisations processing personal data to appoint one. The European Data Protection Board, formerly the Article 29 Working Party, has advised that DPOs are the [...]

By |2019-09-26T14:26:14+00:0028th August, 2019|DPO, ThoughtLeadership|

183 million reasons to invest in your Data Protection Officer (DPO) function.

GDPR breach fines a reality - The Information Commissioner's Office (ICO) intention to fine British Airways £183 million for personal data breaches of it's customers will be of enormous concern to those that are in charge of cyber security. Even before the dust had settled on the British Airways story, the news came that the [...]

By |2019-09-26T14:38:51+00:0016th July, 2019|DPO, ThoughtLeadership|

A comparison between the GDPR and the California Consumer Privacy Act 2018

Introduction - Data Protection Laws in the US The California Consumer Privacy Act 2018 (CCPA) will come into effect on the 1st January 2020. It is stated to be the first comprehensive law in the area of privacy and personal information in the US. Generally the CCPA and the GDPR are similar in regard to [...]

By |2019-09-26T15:00:12+00:0029th April, 2019|DPO, ThoughtLeadership|

The new Washington Privacy Act; a move towards enhanced Information privacy laws in the US

The new Washington Privacy Act; a move towards enhanced Information Privacy Laws in the US The new Washington Privacy Act is expected to take effect on 31/12/2020. The Act is stated to be the second comprehensive State law on privacy protection in the US after the California Consumer Privacy Act, which will take effect [...]

By |2019-09-26T15:12:32+00:0012th March, 2019|DPO, ThoughtLeadership|

The new EU ePrivacy Regulation & new Data Protection laws

The new EU ePrivacy Regulation & new data protection laws - What does it mean? In addition to GDPR compliance, the protection of personal data in the realm of electronic communication services in the EU will soon be regulated by the new ePrivacy Regulation, which is expected to be adopted later this year. The regulation [...]

By |2019-09-26T15:27:12+00:004th March, 2019|ThoughtLeadership|

Certified Data Protection Officer: Friend or Foe?

The General Data Protection Regulation (GDPR) came into force on 25 May 2018 bringing with it new, more comprehensive laws. One of the biggest changes is the mandatory appointment of a certified Data Protection Officer (DPO) for certain companies that process personal data. However, with change comes uncertainty and for some controllers it is unclear [...]

By |2019-09-26T15:32:48+00:004th December, 2018|ThoughtLeadership|

Is your processing legit? Using a legitimate interest assessment to process data under the GDPR

Legitimate interest assessment: a new development? EU regulators have been issuing guidelines to clarify their respective opinions on the use of legitimate interest. This guidance tends to indicate that companies need to be discerning when relying on legitimate interest as the basis for data processing and should follow procedure to complete a legitimate interest [...]

By |2019-09-26T16:15:11+00:003rd May, 2018|ThoughtLeadership|