The ICO on Data Governance

In the year prior to the implementation of GDPR, UK businesses failed to report data breaches in a timely manner. On average it took companies two months to complete the reporting to the Information Commissioners Office (ICO) UK, and often these reports were incomplete and missing vital information. The ICO have stated that since the […]

Read more
Leaving the EU: 6 Steps to Take

This checklist highlights six steps you can take now to start preparing for data protection compliance if the UK leaves the EU on 29 March 2019 without a deal. If you only operate within the UK, you may not need to do much to prepare for data protection after we leave the EU. The UK […]

Read more
Why Tracking Records Properly Matters

The health sector handles some of the most sensitive personal data, and patients have the right to expect that information will be looked after. According to the ICO, in last financial year there were more than 200 self-reported breaches of data being posted or faxed to the incorrect recipient in health sector. You should ensure […]

Read more
Data Protection World Forum – Takeaway #1

The New Green: How data is the new competitive advantage Pernille Tranberg The protection of data falls into three areas of responsibility Governments Enforce the law (GDPR, antitrust) Support and push for data ethical products and services Be a role model and shop green and data ethics Individuals Learn digital selfdefense Understand the data age […]

Read more
Cyber Security Breaches Survey 2018

The Cyber Security Breaches Survey is a quantitative and qualitative survey of UK businesses and, for the first time in this 2018 release, charities. The quantitative survey was carried out in winter 2017 and the qualitative survey in early 2018. It helps these organisations to understand the nature and significance of the cyber security threats […]

Read more
PhishPoint Attack

A phishing attack has been discovered which sends e-mails telling you that a colleague has sent you a file in SharePoint or OneDrive: This e-mail contains a link which takes you to a page that looks like the Microsoft sign in page: If you sign in on this spoofed page, your credentials will be sent […]

Read more
Information rights research

The ICO has conducted and commissioned several reports on customer satisfaction and information rights. One of the goals of the Information Commissioner’s Office (ICO) Information Rights Strategic Plan 2017-21 is ‘to increase the public’s trust and confidence in how data is used and made available’. It is therefore important for the ICO to gauge the […]

Read more
Do’s and Do Not’s for Data Security

DO Do use a strong password and change it if you think it may have been compromised Do report any loss or suspected loss of data Do be on your guard for fake e-mails or phone calls requesting confidential information – report anything suspicious to the IT Help Desk Do keep software up to date […]

Read more
Right to Object to Processing – art. 12, 21

Right to Object to Processing – art. 12, 21 A data subject has the right to object to being subject to public authorities or companies processing their data without explicit consent. A data subject also has the right to stop personal data from being included in direct marketing databases. An individual can make an objection […]

Read more