Data Rights Blog

The data rights blog is a twice-monthly journal providing original insight into privacy, data protection, and freedom of information events.

How to create a culture of privacy

How to create a culture of privacy

Posted on Mar 31, 2022

It is becoming increasingly apparent customers trust brands and organisations that respect their privacy. Evidence of this is found in several reports, such as the 2021 Consumer Privacy Survey, which revealed 86% of consumers care about data privacy and want more control.
» Read More


Role Based Privacy Training, it’s Basically Like Porridge

Role Based Privacy Training, it’s Basically Like Porridge

Posted on Feb 14, 2022

Simply put, role-based training is about delivering the right content, to the right people, at the right time. It's about ensuring staff are given the correct information to do their jobs effectively, whether it's in the context of fulfilling a specific role or carrying out the responsibilities of a particular department. In this article, we outline why role-based privacy training provides such high outcomes and how to use it effectively within your privacy management learning and development programme.
» Read More


How Much to Train Staff on GDPR?

How Much to Train Staff on GDPR?

Posted on Jan 27, 2022

Since the EU General Data Protection Regulation (GDPR) came into force in May 2018, independent supervisory bodies in the UK and EU have issued over 800 monetary penalties for breaching the regulations.
» Read More


Building Customer Trust Through Privacy By Design

Building Customer Trust Through Privacy By Design

Posted on Nov 15, 2021

A good reputation is everything in business. This statement couldn't be more relevant in today's always-on culture, where the slightest misstep can have a devastating effect on how your brand is perceived. Whether you like it or not, customers pay close attention to what you do and choose to act (or not) based on what they see or hear about your business. In purely commercial terms, breaking hard-earned trust can slow or stop customer purchases entirely.
» Read More


How Do You Conduct A GDPR Data Security Review

How Do You Conduct A GDPR Data Security Review

Posted on Oct 29, 2021

Over the last three articles, we've been writing about the different steps involved in carrying out a GDPR compliance audit and GDPR readiness assessment. Now, in the final part of the series, we turn our attention towards the physical and technical measures that enable you to process personal data securely.
» Read More


How Do You Conduct A GDPR Policy and Privacy Information Review

How Do You Conduct A GDPR Policy and Privacy Information Review

Posted on Oct 12, 2021

It may come as a surprise, but achieving compliance with the UK general data protection regulation (GDPR) isn't helped by implementing boilerplate policy documentation. Instead, it requires appropriate procedures and notifications that reflect how your organisation approaches specific compliance issues.
» Read More


Establishing A Lawful Reason For Processing Personal Data

Establishing A Lawful Reason For Processing Personal Data

Posted on Sep 23, 2021

Over several articles, we've been writing about different tips for implementing GDPR. In the series, we're focussing on how to conduct a GDPR audit. This is an activity all organisations should be familiar with, not just at the outset but in an ongoing capacity in the drive for optimum data compliance. In our last article we looked at data mapping and discovering what personal data your organisation holds, why it's retained, along with where and how it's being stored.
» Read More


What Is A GDPR Audit? Step One Data Mapping

What Is A GDPR Audit? Step One Data Mapping

Posted on Sep 09, 2021

In a recent article, we discussed how to create an organisational structure for a GDPR compliance programme which includes establishing reporting lines, appointing a Data Protection Officer (if required), and setting a data protection and privacy compliance budget. The next task is to examine how existing data processing operations match up against UK GDPR and Data Protection Act 2018 compliance requirements.
» Read More


How To Write Your Privacy Notice To Win Customers & Influence People

How To Write Your Privacy Notice To Win Customers & Influence People

Posted on Aug 09, 2021

What if there is a way to present your privacy information so that it supports customer acquisition. Would that be valuable to your business? Believe it or not, this is precisely what the GDPR mandates. Alright, perhaps it doesn't state those aims exactly, but following its provisions to the letter will increase customer trust and loyalty, which in turn will drive sales growth. In this article, we explain how to transform your generic privacy notice into a reputation-enhancing transparency tool.
» Read More


GDPR Leadership & Oversight

GDPR Leadership & Oversight

Posted on Jul 22, 2021

Leadership and oversight provide the foundation for accountability and are essential for effective GDPR compliance. While staff are required to perform certain privacy tasks, organisations must determine the right compliance structure, including whether to appoint a DPO, allocate a budget, and designate the necessary resources to meet their data protection obligations. This article looks at what organisations must do to provide strong leadership and highlights relevant data from a global privacy management survey.
» Read More


10% OFF

Save over £100 on all of our courses

Sign-up for our Privacy Newsfeed weekly newsletter to get your discount code. Receive additional offers by selecting training announcements option. Please choose your desired subscription option and then enter your details to subscribe.

Freevacy has been shortlisted in the Best Educator category.
The PICCASO Privacy Awards recognise the people making an outstanding contribution to this dynamic and fast-growing sector.