How much does GDPR compliance cost?
As a business owner, you might be cynical about GDPR and data protection, and given that every new bit of company legislation seems to come with associated compliance costs, it's no surprise. Every time the government tells us that we need to adhere to more rules and...
Can I send marketing emails to customers?
GDPR caused a lot of confusion when it first appeared, and it's still causing confusion now, but one of the most complex and tricky subjects is about when businesses can and can't email their customers. For years companies have been sending out emails to anyone that...
I’m a small business, do I need to appoint an Art. 27 GDPR representative?
Unless you've spent the last 12 months on the International Space Station, there's a very good chance that the Covid 19 pandemic has affected you in some way. For many, it has seen a fundamental shift in the way they run their business. Those in the retail and...
Can I Send Marketing Emails to Companies?
In light of the General Data Protection Regulation (GDPR) and Privacy and Electronic Communications Regulations (PECR) legislation, you may have some doubts about what you can and can’t do regarding marketing emails. One legislation does not replace the other, but...
The Children’s Code – are you ready?
A long time ago in a galaxy far away …….. (22 January 2020) the Information Commissioner’s Office [‘ICO’] introduced the Children’s Code. If you are a provider of ‘Information Society Services’ likely to be accessed by children -defined as under 18 and you are not...
What is a Data Breach Response Plan: How Do I Create One?
A data breach response plan is a strategy that helps businesses detect and respond to information security violations in a quick and coordinated way. Having a response plan will minimise the financial and reputational damage that comes with a breach incident and...
How to Handle a Data Breach: 6 Steps to Take
Data breaches come with many consequences for your business, the most severe of which is loss of customer trust and damage to your reputation. Building your reputation takes years, but it can be destroyed in an instant by a data breach. However, there is a right way...
Data Breaches
If you process employee or customer or indeed anyone’s personal data then you must take steps (known as organisational and technical measures) to keep it safe i.e. confidential, free from loss/ damage and available for use when needed. However, despite your efforts...
Do I need a Data Protection Officer?
Data protection within a business is often seen as somebody's secondary role, usually the HR department, and a role that hasn't been taken seriously. Indeed, historically, many companies have seen it more as a hindrance to a company's day-to-day running, and...
Surveillance of employees
What are the rules around employee surveillance? This blog is limited to overt (that is employees know it is happening) surveillance. If an employer collects or generates any personal data (‘information’) about an employee then they have to do so in accordance with...