Data Rights Blog

The data rights blog is a twice-monthly journal providing original insight into privacy, data protection, and freedom of information events.

GDPR Leadership & Oversight

GDPR Leadership & Oversight

Posted on Jul 22, 2021

Leadership and oversight provide the foundation for accountability and are essential for effective GDPR compliance. While staff are required to perform certain privacy tasks, organisations must determine the right compliance structure, including whether to appoint a DPO, allocate a budget, and designate the necessary resources to meet their data protection obligations. This article looks at what organisations must do to provide strong leadership and highlights relevant data from a global privacy management survey.
» Read More


An Overview Of The GDPR

An Overview Of The GDPR

Posted on Jul 09, 2021

Having celebrated its third (European) anniversary earlier this year in May, it's easy to assume all businesses are fully up to speed when it comes to GDPR compliance. Of course, we know this isn't entirely the case. So, in this article, we present a high-level examination of the GDPR, who it applies to, its principles, the rights it provides to data subjects, and the legal basis for processing personal data.
» Read More


How The GDPR Affects Businesses

How The GDPR Affects Businesses

Posted on Jun 24, 2021

The GDPR has significantly impacted business operations since it came into force. Organisations have a clearer understanding of what personal data they hold, how it is used, and who has access to it. Privacy management has become a core function led by a dedicated DPO who reports to the board and whose role is to monitor compliance. Here, we've outlined several areas where the GDPR impacts businesses and classified them into four areas: responsibilities, penalties, reputation, and opportunities.
» Read More


Three Things To Consider When Creating A Data Governance Plan

Three Things To Consider When Creating A Data Governance Plan

Posted on Jun 15, 2021

A data governance plan is a collection of policies, procedures, and responsibilities that support the quality and security of data collected, used and held throughout the business. In contrast to the privacy management programme, business goals dictate what and how data is regulated in order to achieve your organisation's commercial ambitions. In this article, we address the three key steps for creating a DGP.
» Read More


Investing In The Right Privacy Technology For Your Organisation

Investing In The Right Privacy Technology For Your Organisation

Posted on May 28, 2021

While a robust privacy framework helps ensure you have the right policies and procedures in place, your organisation will make a significant step forward in its compliance programme effectiveness when it invests in the best privacy technology. Here, we take a look at the different types of privacy technology available and how to choose the right solutions for your business needs.
» Read More


The Best Practices For Privacy Management

The Best Practices For Privacy Management

Posted on May 14, 2021

The law is clear on the responsibilities of organisations that collect and process personal data. Statistics reveal that a costly data breach is almost inevitable. It's a question of when not if. This article, looks at the steps required to implement a robust privacy programme, including establishing an effective framework to provide a basic structure and offer guidance on how to integrate applicable compliance requirements.
» Read More


How To Train Your Staff On The GDPR

How To Train Your Staff On The GDPR

Posted on Apr 29, 2021

Follow our six steps to design and deliver a best-in-class data protection training programme. GDPR compliance needs to be understood by everyone within the business. This can only be achieved when organisations consider how data protection impacts each individual and develops training relevant to them personally.
» Read More


How Does UK Privacy Law Impact Marketing Content in Newsletters

How Does UK Privacy Law Impact Marketing Content in Newsletters

Posted on Apr 19, 2021

The law has recently been clarified on whether it is permissible to include marketing or sales content in newsletter emails. There are now no grey areas about the types of content that can be sent to a subscribed newsletter audience. This article summarises the recent legal ruling to provide certainty to marketers and business owners about what they can or cannot include in their newsletter communications.
» Read More


Why do IT and Information Security professionals value GDPR training?

Why do IT and Information Security professionals value GDPR training?

Posted on Mar 31, 2021

New research from Cisco reveals the growing importance of privacy certifications for IT Security and Information Security professionals. Certified GDPR training that covers privacy-by-design, data minimisation, and pseudonymisation and encryption has become a core competence within IT and security teams following the shift to remote working.
» Read More


What Is GDPR Training?

What Is GDPR Training?

Posted on Feb 25, 2021

It is essential GDPR training is not considered a tick-box exercise. As soon as the ICO is notified of a data breach, one of the first areas they will investigate is the frequency, competency, and relevancy of the training provided. This article examines the benefits of GDPR compliance along with the risks. It also outlines what should be included within a regular role-based GDPR training programme.
» Read More


10% OFF

Save over £100 on all of our courses

Sign-up for our GDPR, Privacy & FOI weekly newsletter to get your discount code. Receive additional offers by selecting to receive periodic training announcements. Please choose your desired subscription option and then enter your details to subscribe.

COVID-19: FLEXIBLE, LIVE ONLINE BCS & IAPP TRAINING NOW AVAILABLE - PLEASE CONTACT FOR DETAILS