As the year draws to a close, it’s crucial to take stock of your organisation’s data protection practices. Ensuring that data privacy and security protocols are in place, up-to-date, and compliant with laws such as GDPR is essential. Here’s a comprehensive year-end checklist to help guide your review and preparation for the new year. 1. […]
Get ready for 2025 with our 10 Step Data Compliance Year-End Checklist Read More »
For small and medium-sized enterprises (SMEs), protecting data is crucial but can often be overlooked due to limited resources. Here are our top 10 data protection tips tailored for SMEs: 1. Educate and Train Employees 2. Develop a Data Subject Response Plan 3. Implement Strong Password Policies 4. Enable Multi-Factor Authentication (MFA) 5. Regularly Update
As a data protection professional I often get asked what the most important aspects of data protection are. There are many things in the regulation which resonate for me and help me shape my advice to clients but, it is difficult to list which are most important as the answer is reliant on the context.
First 100 days of a data protection project; planning for success what to cover Read More »
Now more than ever businesses are collecting, storing, and processing vast amounts of personal data. Ensuring the protection of this data is not just a legal obligation but also a critical trust factor for customers. This is where Data Protection Impact Assessments (DPIAs) come into play. In this blog, we’ll explore what a DPIA is,
Understanding DPIA: A Crucial Component for Data Protection Read More »
With organisations facing growing challenges to ensure compliance with data protection laws and evidencing accountability a risk register is essential to identify, assess, prioritise and mitigate risks related to the handling, processing, and storage of personal data. Eight components of a Risk Register: Benefits of a risk register include: In using a risk register organisations
Data Protection Compliance: The Importance of a Risk Register Read More »
A Record of Processing Activities (ROPA) is a document that provides a comprehensive overview of how personal data is collected, processed, stored and transferred within an organisation. For some organisations it is a current EU and UK GDPR obligation but equally, a well-maintained ROPA brings a multitude of benefits to an organisation. The Data Protection
Making a record of processing activities (ROPA) work for your organisation Read More »
During the DPN webinar on 21st February panellists Mark Roebuck, Robert Bond, Louise Garrett-Cox and Simon Blanchard took on a host of topics and questions ranging from “what are data assets and IARs,” to “how do I see the value of a ROPA and gain stakeholder buy-in”. Here we summarise 5 key takeaways from the
IAR, ROPA and Stakeholder buy in – 5 key takeaways from the DPN webinar Read More »
If you would like to ask more questions or to arrange training, complete the form below and we will respond shortly.
