Encryption is the process of encoding a message or information in such a way that only authorised parties can access it and those who are not authorised cannot. Authorisation is […]
Pseudonymisation can be defined as “personal data which is rendered less likely to lead to the identification of the data subject without the use of additional information” Therefore as long […]
Anonymised information is information which does not relate to an identified or identifiable person or to personal data rendered anonymous in such a way that the data subject is no […]
An important aspect of managing data protection within your organisation is having a clear understanding of how you plan on managing data protection risk. A data protection policy will help […]
Data protection regulation refers numerous times to ‘technical and organisational measures’. These relate to the measures which an organisation is taking to protect personal data and in all cases should […]
Data protection by design and by default is primarily the process of putting in place appropriate technical and organisational measures to implement the data protection principles and safeguard individual rights. […]
Data should be retained only for as long as it is necessary. This means you will need to retain data whilst it is required for the processing which you need […]
