Corporations rely on their blogs for any number of benefits. Not only is it a smart way to improve your search rankings, but it’s also an […]
The ICO recently published new guidelines to further explain the rules regarding a data subject access request (DSAR). This was welcome news for a number...
A Legitimate Interest Impact Assessments (LIA) is a specific type of risk assessment, and as such, needs to be treated with some degree of gravity. If […]
After a long wait POPIA is now here. South Africa promulgated the Protection of Personal Information Act (POPIA) on the 1st July 2020. This has been […]
When the Department for Education (DfE) received complaints regarding how the department managed its National Pupil Database, the response from the...
When looking over what happened this week, there were a couple of things I could talk about: EDPB’s guidelines on relevant and reasoned objection under...
What is a DPIA? A DPIA (Data Protection Impact Assessment) is executed by an organisation to analyse, identify and mitigate risks to personal information...
The Data Protection Authority of Hamburg (HmbBfDI) fined H&M, one of the largest global clothing retailers, €35.2 million for excessive monitoring of...
Social media has become an undeniable force in people’s lives today, and this applies in nearly every corner of the globe. In fact, there are nearly […]
We tend to think of data as relatively static. Systems might be updated from time to time, but most of the time the information is organised […]
Reflecting back on my post from Friday on joint controllers, I thought it might be useful to reflect on a couple of instances where your data […]
On September 7, 2020 the European Data Protection Board (EDPB) publish guidelines on “data processing agreements vs Joint Controller Agreements”. I link...