Who can be a DPO?
GDPR lays out some parameters describing who can be a DPO. In brief the DPO should be trained in data protection law […]
Tag: Personal Data
What does a DPO do?
The Data protection officers (DPO) is an unusual role, as it has some statutory functions and independence, yet still exists within an organisation’s line structure. GDPR did not introduce […]
What are Joint Controllers?
Sometimes the division between Data Processors and Data Controllers is not simple. Where more than one entity has control in determining the processing requirements, […]
Four key points to include in contracts between Data Controllers and Data Processors
The General Data Protection Regulation (2016/679), imposes clear requirements controlling the appointment of data processors by data controllers. One of these is a requirement prescribing various matters […]
GDPR Data Retention: Adequate, relevant and not excessive
Many people ask us how long they should store data for to be GDPR compliant. The very brief answer from the EU […]
GDPR: encryption, pseudonymisation and anonymisation – security as a Russian doll
The deadline on May 25th 2018 has passed, and even though the GDPR legislation has been public for well over a year, […]
GDPR for IT equipment suppliers
The data controllers carries primary responsibility, along with any data processors to protect the data subjects under GDPR. Businesses who sells IT […]
Big Data : The New Oil or Nuclear Waste?
We have been told that big data usage will differentiate successful businesses from failures. That is probably true, but not only as […]
GDPR a primer
General Data Protection Regulation or GDPR imposes new and arduous burdens on business and other organisations across Europe from May 2018. Behaviours […]