When the GDPR, the European Data Protection Law, became official in May 2018, it did not only start a new system of data protection law for personal data relating issues but also new data protection obligations and procedures to follow to comply with what GDPR asks from the organisations that fall into its scope. In
The Principle seven of the General data protection regulation (GDPR) is; 7. Accountability “The controller shall be responsible for, and be able to demonstrate compliance with, paragraph 1 (‘accountability’).” Article 5.2 GDPR There are two key points in the accountability principle and these are that you must be responsible and comply with the GDPR and
In the world of data protection and Data Protection Officers, you will notice nominal after people’s names, like PC.dp (GDPR) and CIPM, CIPP/E, CIPP/US and Data Protection Practitioner. What exactly does all this mean? A Data Protection Practitioner is a person who is active in practising the profession, who is knowledgable and has experience. The
The whole idea behind data protection is to protect a data subjects rights. The data protection laws are based on our Human Rights and our right to privacy. The data protection rights have evolved with the growth of our technical development and use of the world wide web. The ‘internet of things’ has increased the
The training of your staff on their data protection responsibilities is one of the most important parts of any data protection compliance project or data governance structure in an organisation. Having policies and procedures in place is no use if your staff are not aware of them or their meaning. Having data subject access requests
This is our second blog of 2020, we have been busy with working on compliance projects, conducting DPIA’s and being engaged to be DPO’s for Public Authorities and private organisations. Our main office in Jersey closed down due to COVID-19 and all our planned training courses in the Channel Islands and Ireland had to be
Welcome to our first blog of 2020. The past twelve months saw an array of guidance, clarifications and new approaches to the changing world of data protection. The clarification to the consent needed before a cookie (Non-essential) can be placed on a user’s system is going to be a major change for organisations with a
We have decided to do this blog every two weeks because we can give you more relevant information and more time for you to get around reading the parts that might interest you. In this blog we are looking at articles on, Guernsey’s new data protection regime, using CCTV in the work place, a decision
We are only looking at three articles this week, the first explaining the new registration process and cost as a controller or processor in Jersey and soon Guernsey. This will increase the registration cost for most organisations. The second look at a GDPR compliance audit carried out by the German Supervisory Authority on 50 companies
In this weeks blog we look at four articles covering a fine issued by the Polish DPA for €645,000 against an online retail company, an update on your position with using electronic signatures – watch out for your email signatures? Facebook settling a £500,000 penalty, without guilt for unfairly processing personal data of 87 million
"*" indicates required fields
