ISO 27001 is an internationally recognised standard designed to help businesses protect and manage their information assets. The standard’s framework supports you to implement and…
ISO 27001 is the only auditable international standard that defines the requirements of an information security management system (ISMS). The GDPR and ISO 27001 fit…
So, the GDPR is now in force and you’ve put everything in place to comply. What’s next? Many businesses are now focusing on maintaining compliance…
‘Privacy by Design’ and ‘Privacy by Default’ are not new concepts. The right to privacy is a fundamental aspect of the European Convention on Human…
"The GDPR identifies children as ‘vulnerable individuals’ deserving of ‘specific attention’..." The GDPR will bring in special protection for children’s personal data, particularly where it…
"Under the GDPR the definition of consent is clearer and more rigorous..." The current Data Protection Act (DPA) and the GDPR both state that every…
The rules for making a subject access request (SAR) under the GDPR will be similar to the Data Protection Act 1998. However, there are key…
Under the current Data Protection Act 1998 (DPA) any organisation that processes personal data and sensitive personal data must have a legal basis for doing…
For the most part, individuals’ data protection rights will be the same as they are under the current Data Protection Act but with significant enhancements.…
At the moment, when your organisation collects people’s personal data your privacy notice needs to tell them who you are and how you plan to…
0333 939 87 97
