The Data Protection Blog

March 20, 2018

Demonstrate compliance with your records of processing activities report

The GDPR is clear In order to demonstrate compliance with this regulation, the controller and processor should maintain records of processing activities under its responsibility. Each controller and processor should be obliged to cooperate with the supervisory authority and make those records, on request, available to it, so that it might serve for monitoring those processing operations.
March 12, 2018

Yes, the GDPR is a good thing for your business

There’s been a lot of FUD around the GDPR – Fear about what it’s going to cost to become compliant and what it’ll cost you in fines if you don’t, Uncertainty about how it applies to your particular organisation and how to go about becoming compliant, and Doubt about whether, after all this expense and trouble, it’s going to be of any benefit to your business.
March 8, 2018

Webinar: How accountants and ICAEW use our GDPR software?

A GDPR365 presentation for the Institute of Chartered Accountants of England and Wales that showcases how this thorough GDPR compliance management tool assists companies to manage their GDPR compliance programmes.
February 15, 2018

Status of the GDPR across Europe

The GDPR allows for EU member states to make some derogations (changes to how the data privacy law will be enforced) and as we get closer to the May 28 date of initial enforcement these changes are becoming clearer. Let’s look at some of the member states to see what they’re doing.
February 8, 2018

GDPR is a marathon not a sprint

With all the hype about May 25, many organisations are seeing the date as a GDPR deadline. But it’s not. The implementation date is the starting line for ongoing compliance with the EU’s new data privacy regulation. From this date forward, organisations are expected to be able to show they have systems in place that will continue to meet GDPR compliance
January 19, 2018

It’s 2018! Have you started your GDPR preparations?

2018 is the year the General Data Protection Regulation (GDPR) kicks in. But how many organisations will be ready by the May 25 deadline? According to a survey run by multinational cyber-security provider Kaspersky Lab, only half of SMEs in the UK and EU are even aware of the GDPR and only a quarter are ready for it; many more haven’t begun their preparations for compliance.
January 8, 2018

Using Data Protection Impact Assessments to assess risky processing activities

If you're in any doubt about whether the processing of personal data you do is within the parameters of the General Data Protection Regulation (GDPR) then you should carry out a DPIA because the penalty for not doing so – when it’s appropriate to – is a €10-million fine, or 2% of annual global turnover, whichever is greater.
November 28, 2017

What does Uber’s breach tell us about the GDPR and data security?

It’s crime enough that hackers stole from Uber the personal information of millions of drivers and passengers, but concealing the breach, as Uber did for more than a year, would also be a serious transgression of the law under the European Union’s new General Data Protection Regulation (GDPR) which comes into effect in May 2018.
November 10, 2017

Not started with the GDPR? No GDPR compliance plan? GDPR365 to the rescue!

You must know about the GDPR by now. The European Union’s new General Data Protection Regulation. And that organisations have to become compliant with it by May 2018 or expose themselves to the risk of hefty fines. Recent research by multinational software corporation CA technologies’ indicates that with little more than six months from the GDPR coming into force, less than half of all organisations have a compliance programme in place.

GDPR365 is now PrivIQ

There has been an explosion of global data protection regulations. We’ve expanded our compliance framework to enable multiple regulations. We’ve outgrown GDPR alone, so we’re changing our name to PrivIQ to reflect that and to focus on providing “Intelligent Compliance, Simply.”