Julia Porter08 June 2021How to manage your suppliers effectivelyTackling the challenge of knowing your suppliers, putting contracts in place, managing these relationships and preventing data breaches.Read Article Philippa Donn26 May 2021UK Adequacy: MEPs call for draft EC decisions to be modifiedWhy have MEPs rejected draft UK adequacy decisions and called for amendments? Is the free flow of data from EU to UK under threat? Read Article Simon Blanchard25 May 2021Data Retention: Tips and TechniquesHow should you tackle the tricky topic of data retention? Let us help, with our tips and techniques for success.Read Article Julia Porter12 May 2021Are we sharing more data than ever before?Covid has led proliferation of online data collection forms for dentists, hairdressers pubs and more. What should we be concerned about? Read Article Simon Blanchard28 April 2021Social media targeting: consent or legitimate interests?Targeted advertising via various social media platforms is widely used. But are we being open and upfront about it? Read Article Julia Porter27 April 2021Using cookies – why should you bother to get match fit?Have you got your cookies in order? If not, does it matter? Find out what good looks like when it comes to cookie complianceRead Article Philippa Donn13 April 2021Data breaches: Why humans are our weakest linkSent an attachment to the wrong person? Left a laptop on a train? Human error is a major cause of data breaches. What can we do? Read Article Julia Porter13 April 2021Where next with international data transfers?How do the new SCCs work? What do 'supplementary measures look like? Get the low down on international transfers post Brexit & Schrems II... Read Article Julia Porter31 March 2021Minimise your data with maximum permissionsHow can you minimise the volumes of data you keep whilst also maintaining good levels of marketing permissions?Read Article Simon Blanchard29 March 2021Data breaches – is your business prepared?Data breaches can affect anyone - the stats are concerning and we've all seen the headlines. Why being prepared is crucial... Read Article Philippa Donn17 March 2021Consent: Getting it right!Are you suffering from consent confusion? We dispel the myths about consent under GDPR, share some tips and handy checklist...Read Article Simon Blanchard16 March 2021Managing data deletion, destruction and anonymisationGetting rid of personal data your business no longer needs is a really simple concept, but in practice it can be rather tricky to achieve! Read Article Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn26 May 2021UK Adequacy: MEPs call for draft EC decisions to be modifiedWhy have MEPs rejected draft UK adequacy decisions and called for amendments? Is the free flow of data from EU to UK under threat? Read Article Simon Blanchard25 May 2021Data Retention: Tips and TechniquesHow should you tackle the tricky topic of data retention? Let us help, with our tips and techniques for success.Read Article Julia Porter12 May 2021Are we sharing more data than ever before?Covid has led proliferation of online data collection forms for dentists, hairdressers pubs and more. What should we be concerned about? Read Article Simon Blanchard28 April 2021Social media targeting: consent or legitimate interests?Targeted advertising via various social media platforms is widely used. But are we being open and upfront about it? Read Article Julia Porter27 April 2021Using cookies – why should you bother to get match fit?Have you got your cookies in order? If not, does it matter? Find out what good looks like when it comes to cookie complianceRead Article Philippa Donn13 April 2021Data breaches: Why humans are our weakest linkSent an attachment to the wrong person? Left a laptop on a train? Human error is a major cause of data breaches. What can we do? Read Article Julia Porter13 April 2021Where next with international data transfers?How do the new SCCs work? What do 'supplementary measures look like? Get the low down on international transfers post Brexit & Schrems II... Read Article Julia Porter31 March 2021Minimise your data with maximum permissionsHow can you minimise the volumes of data you keep whilst also maintaining good levels of marketing permissions?Read Article Simon Blanchard29 March 2021Data breaches – is your business prepared?Data breaches can affect anyone - the stats are concerning and we've all seen the headlines. Why being prepared is crucial... Read Article Philippa Donn17 March 2021Consent: Getting it right!Are you suffering from consent confusion? We dispel the myths about consent under GDPR, share some tips and handy checklist...Read Article Simon Blanchard16 March 2021Managing data deletion, destruction and anonymisationGetting rid of personal data your business no longer needs is a really simple concept, but in practice it can be rather tricky to achieve! Read Article Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard25 May 2021Data Retention: Tips and TechniquesHow should you tackle the tricky topic of data retention? Let us help, with our tips and techniques for success.Read Article Julia Porter12 May 2021Are we sharing more data than ever before?Covid has led proliferation of online data collection forms for dentists, hairdressers pubs and more. What should we be concerned about? Read Article Simon Blanchard28 April 2021Social media targeting: consent or legitimate interests?Targeted advertising via various social media platforms is widely used. But are we being open and upfront about it? Read Article Julia Porter27 April 2021Using cookies – why should you bother to get match fit?Have you got your cookies in order? If not, does it matter? Find out what good looks like when it comes to cookie complianceRead Article Philippa Donn13 April 2021Data breaches: Why humans are our weakest linkSent an attachment to the wrong person? Left a laptop on a train? Human error is a major cause of data breaches. What can we do? Read Article Julia Porter13 April 2021Where next with international data transfers?How do the new SCCs work? What do 'supplementary measures look like? Get the low down on international transfers post Brexit & Schrems II... Read Article Julia Porter31 March 2021Minimise your data with maximum permissionsHow can you minimise the volumes of data you keep whilst also maintaining good levels of marketing permissions?Read Article Simon Blanchard29 March 2021Data breaches – is your business prepared?Data breaches can affect anyone - the stats are concerning and we've all seen the headlines. Why being prepared is crucial... Read Article Philippa Donn17 March 2021Consent: Getting it right!Are you suffering from consent confusion? We dispel the myths about consent under GDPR, share some tips and handy checklist...Read Article Simon Blanchard16 March 2021Managing data deletion, destruction and anonymisationGetting rid of personal data your business no longer needs is a really simple concept, but in practice it can be rather tricky to achieve! Read Article Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter12 May 2021Are we sharing more data than ever before?Covid has led proliferation of online data collection forms for dentists, hairdressers pubs and more. What should we be concerned about? Read Article Simon Blanchard28 April 2021Social media targeting: consent or legitimate interests?Targeted advertising via various social media platforms is widely used. But are we being open and upfront about it? Read Article Julia Porter27 April 2021Using cookies – why should you bother to get match fit?Have you got your cookies in order? If not, does it matter? Find out what good looks like when it comes to cookie complianceRead Article Philippa Donn13 April 2021Data breaches: Why humans are our weakest linkSent an attachment to the wrong person? Left a laptop on a train? Human error is a major cause of data breaches. What can we do? Read Article Julia Porter13 April 2021Where next with international data transfers?How do the new SCCs work? What do 'supplementary measures look like? Get the low down on international transfers post Brexit & Schrems II... Read Article Julia Porter31 March 2021Minimise your data with maximum permissionsHow can you minimise the volumes of data you keep whilst also maintaining good levels of marketing permissions?Read Article Simon Blanchard29 March 2021Data breaches – is your business prepared?Data breaches can affect anyone - the stats are concerning and we've all seen the headlines. Why being prepared is crucial... Read Article Philippa Donn17 March 2021Consent: Getting it right!Are you suffering from consent confusion? We dispel the myths about consent under GDPR, share some tips and handy checklist...Read Article Simon Blanchard16 March 2021Managing data deletion, destruction and anonymisationGetting rid of personal data your business no longer needs is a really simple concept, but in practice it can be rather tricky to achieve! Read Article Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard28 April 2021Social media targeting: consent or legitimate interests?Targeted advertising via various social media platforms is widely used. But are we being open and upfront about it? Read Article Julia Porter27 April 2021Using cookies – why should you bother to get match fit?Have you got your cookies in order? If not, does it matter? Find out what good looks like when it comes to cookie complianceRead Article Philippa Donn13 April 2021Data breaches: Why humans are our weakest linkSent an attachment to the wrong person? Left a laptop on a train? Human error is a major cause of data breaches. What can we do? Read Article Julia Porter13 April 2021Where next with international data transfers?How do the new SCCs work? What do 'supplementary measures look like? Get the low down on international transfers post Brexit & Schrems II... Read Article Julia Porter31 March 2021Minimise your data with maximum permissionsHow can you minimise the volumes of data you keep whilst also maintaining good levels of marketing permissions?Read Article Simon Blanchard29 March 2021Data breaches – is your business prepared?Data breaches can affect anyone - the stats are concerning and we've all seen the headlines. Why being prepared is crucial... Read Article Philippa Donn17 March 2021Consent: Getting it right!Are you suffering from consent confusion? We dispel the myths about consent under GDPR, share some tips and handy checklist...Read Article Simon Blanchard16 March 2021Managing data deletion, destruction and anonymisationGetting rid of personal data your business no longer needs is a really simple concept, but in practice it can be rather tricky to achieve! Read Article Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter27 April 2021Using cookies – why should you bother to get match fit?Have you got your cookies in order? If not, does it matter? Find out what good looks like when it comes to cookie complianceRead Article Philippa Donn13 April 2021Data breaches: Why humans are our weakest linkSent an attachment to the wrong person? Left a laptop on a train? Human error is a major cause of data breaches. What can we do? Read Article Julia Porter13 April 2021Where next with international data transfers?How do the new SCCs work? What do 'supplementary measures look like? Get the low down on international transfers post Brexit & Schrems II... Read Article Julia Porter31 March 2021Minimise your data with maximum permissionsHow can you minimise the volumes of data you keep whilst also maintaining good levels of marketing permissions?Read Article Simon Blanchard29 March 2021Data breaches – is your business prepared?Data breaches can affect anyone - the stats are concerning and we've all seen the headlines. Why being prepared is crucial... Read Article Philippa Donn17 March 2021Consent: Getting it right!Are you suffering from consent confusion? We dispel the myths about consent under GDPR, share some tips and handy checklist...Read Article Simon Blanchard16 March 2021Managing data deletion, destruction and anonymisationGetting rid of personal data your business no longer needs is a really simple concept, but in practice it can be rather tricky to achieve! Read Article Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn13 April 2021Data breaches: Why humans are our weakest linkSent an attachment to the wrong person? Left a laptop on a train? Human error is a major cause of data breaches. What can we do? Read Article Julia Porter13 April 2021Where next with international data transfers?How do the new SCCs work? What do 'supplementary measures look like? Get the low down on international transfers post Brexit & Schrems II... Read Article Julia Porter31 March 2021Minimise your data with maximum permissionsHow can you minimise the volumes of data you keep whilst also maintaining good levels of marketing permissions?Read Article Simon Blanchard29 March 2021Data breaches – is your business prepared?Data breaches can affect anyone - the stats are concerning and we've all seen the headlines. Why being prepared is crucial... Read Article Philippa Donn17 March 2021Consent: Getting it right!Are you suffering from consent confusion? We dispel the myths about consent under GDPR, share some tips and handy checklist...Read Article Simon Blanchard16 March 2021Managing data deletion, destruction and anonymisationGetting rid of personal data your business no longer needs is a really simple concept, but in practice it can be rather tricky to achieve! Read Article Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter13 April 2021Where next with international data transfers?How do the new SCCs work? What do 'supplementary measures look like? Get the low down on international transfers post Brexit & Schrems II... Read Article Julia Porter31 March 2021Minimise your data with maximum permissionsHow can you minimise the volumes of data you keep whilst also maintaining good levels of marketing permissions?Read Article Simon Blanchard29 March 2021Data breaches – is your business prepared?Data breaches can affect anyone - the stats are concerning and we've all seen the headlines. Why being prepared is crucial... Read Article Philippa Donn17 March 2021Consent: Getting it right!Are you suffering from consent confusion? We dispel the myths about consent under GDPR, share some tips and handy checklist...Read Article Simon Blanchard16 March 2021Managing data deletion, destruction and anonymisationGetting rid of personal data your business no longer needs is a really simple concept, but in practice it can be rather tricky to achieve! Read Article Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter31 March 2021Minimise your data with maximum permissionsHow can you minimise the volumes of data you keep whilst also maintaining good levels of marketing permissions?Read Article Simon Blanchard29 March 2021Data breaches – is your business prepared?Data breaches can affect anyone - the stats are concerning and we've all seen the headlines. Why being prepared is crucial... Read Article Philippa Donn17 March 2021Consent: Getting it right!Are you suffering from consent confusion? We dispel the myths about consent under GDPR, share some tips and handy checklist...Read Article Simon Blanchard16 March 2021Managing data deletion, destruction and anonymisationGetting rid of personal data your business no longer needs is a really simple concept, but in practice it can be rather tricky to achieve! Read Article Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard29 March 2021Data breaches – is your business prepared?Data breaches can affect anyone - the stats are concerning and we've all seen the headlines. Why being prepared is crucial... Read Article Philippa Donn17 March 2021Consent: Getting it right!Are you suffering from consent confusion? We dispel the myths about consent under GDPR, share some tips and handy checklist...Read Article Simon Blanchard16 March 2021Managing data deletion, destruction and anonymisationGetting rid of personal data your business no longer needs is a really simple concept, but in practice it can be rather tricky to achieve! Read Article Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn17 March 2021Consent: Getting it right!Are you suffering from consent confusion? We dispel the myths about consent under GDPR, share some tips and handy checklist...Read Article Simon Blanchard16 March 2021Managing data deletion, destruction and anonymisationGetting rid of personal data your business no longer needs is a really simple concept, but in practice it can be rather tricky to achieve! Read Article Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard16 March 2021Managing data deletion, destruction and anonymisationGetting rid of personal data your business no longer needs is a really simple concept, but in practice it can be rather tricky to achieve! Read Article Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter03 March 2021What privacy lessons can we learn from Online DatingWe spoke to the Online Dating Association about privacy matters - here are our ten data protection lessonsRead Article Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn02 March 2021Right to Erasure: 10 TipsErasure requests proving a challenge? Get some top tips on how to get your Right to Erasure process on track. Read Article Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard02 March 2021How is your privacy programme performing?How to track your business’s privacy performance and make sure data is being successfully managed across the business. Read Article Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn21 February 2021European Commission publishes draft UK adequacy decisionInternational data transfers: A draft adequacy decision has been published which would allow for the free flow of data from EEA to UK. Read Article Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter17 February 2021Has Covid-19 changed our attitudes to privacy?How the pandemic raises a number of privacy challenges and means taking difficult decisions on the collection and use of personal data. Read Article Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard15 February 2021Data governance: How to take control of your dataTake control of your data! How a data governance framework means you can meet business objectives without taking unnecessary risks. Read Article Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter21 January 2021Like a puppy, data protection is for life – does your training match?What does good data protection training look like? Why one-off sessions will not cut it and how to keep the momentum going...Read Article Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn20 January 2021UK Data protection and ePrivacy law post Brexit: Q&AWhat data protection and ePrivacy law applies in the UK post Brexit? Our handy Q&A answers key considerations for your business.Read Article Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter08 January 2021It’s time to recognise and celebrate responsible marketingMore than ever we need to focus on being open and transparent and building trust with customers. What core values should you embrace? Read Article Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard04 January 2021Data protection and innovation in a post-Brexit worldThe ICO calls for transparency, accountability and trust to be core themes in the UK's National Data Strategy post-Brexit Read Article Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn04 January 2021Brexit Deal and Data TransfersFears the free flow of data from the EEA to UK would end have been averted with the Brexit Trade Deal. But we’re not out of the woods yet.Read Article Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn22 December 2020Data sharing: 10 point checklistAs the ICO publishes Data Sharing Code of Practice, what are the 10 key points you need to think about before you share personal data?Read Article Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn16 December 2020Brexit: Do you need an EU Representative?UK organisations may need to appoint a EU representative, find out if your organisation falls under this GDPR requirement... Read Article Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn01 December 2020Fantasy GDPR – Your new data protection regime130 people, battle-scarred data professionals all, chose to cry havoc and unleash the Dogs of Data by taking part in our Fantasy GDPR quiz.Read Article Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard01 December 2020Should DPOs take responsiblity for risk?Allocating responsibility for your privacy risks - Is it right for data protection risks to sit with your Data Protection Officer? Read Article Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard12 November 2020How the ICO’s Accountability Framework could help your businessWe take a look at how ICO's handy Accountability Framework can help organisations meet their GPDR responsiblities. Read Article Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn03 November 2020The data breach that cost Marriott £18.4 million – what went wrong?As the ICO slams a £18 million data breach fine on Marriott, we take a look at what went wrong and what other businesess can learn ... Read Article Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn23 October 2020ICO Subject Access Request Guidance: help or hindrance?Subject Access Requests: As the ICO published detailed guidance we take a look at the higlights and whether it's a help or hindrance Read Article DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
DPN Team22 October 2020Rosemary Smith Responsible Marketing AwardGiving an individual or team credit for a creative and privacy aware project. This award recognises a responsible approach to marketing. Read Article Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard22 October 2020British Airways data breach – what can we learn?British Airways has been fined £20m by the ICO, what lessons can we all learn from BA's painful personal data breach? Read Article Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn20 October 202010 DSAR tips from 10 DPOsData Subject Access Requests can be a challenge to handle. Get 10 great tips from experts who routinely handle the right of access, Read Article Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter15 October 2020Are COVID-19 contact tracing technology services legitimate?Alarming headlines have suggested COVID-19 contact tracing data from pubs and restaurants is being sold on. Is this actually true and what should checks should you take? Read Article Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter05 October 2020Is the new COVID app safe to use?We now have the newly minted Covid app modelled on the Google and Apple templates. Should we be trusting this app?Read Article Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter24 September 2020Cookies crushed, the world is changingThe demise of the third party cookie - five signs the world is changing. Where next for targeted advertising? Read Article Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn23 September 2020Data Protection by Design: Part 3 – Data Protection Impact AssessmentsHow to get your Data Protection Impact Asssessment process on track - when should you do one, what should you process look like? Get some useful tips... Read Article Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn09 September 2020New Children’s Code – does it apply to your business?New Children's Code to protect under 18s online. It will affect your business if your online services are likely to be acccessed by children. Read Article Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard04 September 2020Data Protection by Design: Part 2 – How to approach itHow to implement Data Protection by Design when you are developing new applications, products and services. Read Article Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn27 August 2020Data Protection by Design: Part 1 – The BasicsWhat does ‘Data Protection by Design’ really mean (and why is it also called ‘Privacy by Design’)? Do you need to be concerned about it? And how do you...Read Article Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard25 August 2020Data Protection Officers – should we appoint a DPO?Which organisations need to have a DPO? If you don't should you appoint one anyway or outsource? We explore the options .. Read Article Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard12 August 2020Use of automated facial recognition by South Wales Police ruled ‘unlawful’South Wales Police's use of automated facial recognition has been ruled unlawrul - it breaches human rights and has potential for bias. Read Article Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter12 August 2020When does your CRM marketing plan morph into a data privacy project?Looking to leverage your customer database to drive more business? How to make sure you marketing plan is supported by your privacy strategyRead Article Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard10 August 2020Dashcams and GDPR: Assessing the privacy implications7 point privacy guide for use of dashcams in vehicles. Quick steps to make sure your use of dashcams is transparent and lawful. Read Article Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard05 August 2020ICO guidance on how to apply good data protection to AISeven steps for making sure innovation flourishes and your artificial intelligence activities are sound from a data protection point of viewRead Article Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard27 July 2020RoPA – Five tips for keeping your Records of Processing Activity up to date5 tips for keeping your GDPR records of processing activities up to date. The why, who, what, how and when of data protection documentation.Read Article DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
DPN Team16 July 2020Transparency: How to get the message acrossDiscover the benefits of being upfront and transparent with people about how you use their data. In this webinar hosted by Robert Bond from Bristows we explore why transparency...Read Article Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn13 July 2020Contact Tracing: 7 Quick Steps for collecting people’s dataFrom holiday cottages to theme parks, hotels to pubs, many will be collecting people's details for contact tracing. Get our quick guide to how to do this. Read Article Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Chris Field11 July 2020You’ve been SAR-bombed!You are at the end of long day .. you just do one last check of your inbox - the new count registers over 9,000 new emails! All...Read Article Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard09 July 2020Facial Recognition – should we be concerned?Facial recognition is clever, from selfies to surveillance its use is becoming far more widespread. Should we be worried? Read Article Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn30 June 2020Data breaches: 10-point checklist for risk assessmentsHow do you assess the actual risk to people of a data breach? 10 questions you need to ask when carrying out an risk assessment. Read Article Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard16 June 2020Privacy is a marathon not a sprintPondering how to improve your privacy credentials? Here are 5 steps to inspire you. More than 2 years on from GDPR, remember it’s a journey, not a sprint.Read Article Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn16 June 2020Why personalisation is a good thing, when done well“Hi, you haven’t finished watching Jeffrey Epstein: Filthy Rich”, said an email my husband received .It annoyed him......Read Article Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter03 June 2020Why is it so hard to explain how we use personal data?Five ways to help explain complex and contentious uses of personal data. How to improve your communications and transparency.Read Article DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
DPN Team03 June 2020Data Retention GuidanceA practical toolkit packed with tips, advice and case studies on how to tackle data retention. Developed by a group of data protection and privacy specialists from a...Read Article Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter18 May 2020Seven Step Ad Tech Guide from DMA and ISBASeven Step Ad Tech Guide - Support for UK businesses engaged in the programmatic digital advertising to ensure they protect the rights of individuals.Read Article Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard14 May 2020COVID 19 – Privacy under the SpotlightPrivacy and COVID-19. When finding quick solutions and taking rapid decisions, don't forget the privacy impact. Here's our quick tour of aspects to consider. Read Article Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Debbie McElhill21 October 2019Personal Data Breaches – to notify or not to notify? When to notify the Regulator and/or affected individuals about a data breach As the dark, creeping realisation dawns that a personal data breach may have occurred, staff who think...Read Article Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Debbie McElhill18 September 2019Personal Data Breaches: Prevention & PlanData Breach! Are you ready should the worst happen? We’ve all seen the headlines, data breaches are weekly if not daily news. Regulators across Europe are busy wading through...Read Article Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Gemma Johnson22 August 2019DPIA – How to assess projects in an Agile environmentDPIAs in an Agile environment More than 50% of organisations have adopted Agile methodologies for technology projects – including those which involve the processing of personal data. Agile methodology...Read Article Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Julia Porter21 June 2019Cookies, Consent & Compliance: 10 takeaways from the ICO’s update report into AdTech and RTB10 Takeaways from ICO’s Update Report The ICO has published an Update Report on AdTech and Real Time Bidding (RTB). The clue is in the word “update” in that...Read Article Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Simon Blanchard20 May 2019Getting your Supplier Contracts RightA Guide to Controller-Processor contracts The GDPR sets out strict requirements for when an organisation decides to utilise the services of another company to process personal data. The most...Read Article Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn02 April 2019Prospects, Leads, Bought-in lists … Don’t forget the right to be informedTransparency, Control and the Right to be Informed Let me take you back a year, to April 2018 – a time when there was a considerable flurry to ensure...Read Article Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn22 January 2019Legitimate Interests: It’s legit, isn’t it?“Legitimate interests is the most flexible lawful basis for processing, but you cannot assume it will always be the most appropriate” UK Information Commissioner’s Office Let’s say you want...Read Article Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Gemma Johnson20 November 2018GDPR FAQsGDPR in a nutshell Data protection legislation is nothing new, but GDPR does enhance the rules, introduce tougher obligations and build on or change previous data protection definitions. Here...Read Article Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn22 October 2018GDPR: The Seven Deadly (Data Protection) SinsSeven Deadly Data Protection Sins We hear much about good GDPR compliance, and how to meet the seven data protection principles – to be accountable, transparent, lawful and so...Read Article Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
Philippa Donn13 May 2018GDPR: The Right of AccessThe Right of Access – Data Subject Access Requests: how to handle them The right of access is nothing new, but there are some changes ushered in by the...Read Article DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article 1 2 3 4 5 … 8
DPN Team07 April 2018DPN Legitimate Interests Guidance – GDPR (Version 2.0)In-depth Legitimate Interests Guidance We have updated the Guidance we originally published in July 2017. This version (published in April 2018) includes several case studies and an example of...Read Article Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article
Robert Bond08 February 2018GDPR and Data Processing AgreementsController – Processor Contracts Any business subject to the EU General Data Protection Regulation (GDPR) as a Controller needs to have in place an appropriate contract with any other...Read Article
Helping your teams with no-nonsense privacy advice
