Compliance and Data Protection Blog

Prestige Software Data Leak: What Consequences Can the Hospitality Industry Learn?

The hospitality industry has long been an attractive target for hackers. With all virtual services available today, criminals might take advantage of anything from a vulnerable key card system to credit card details to personal information on guests. The security experts at Website Planet, an ethical team that strives to protect the public, recently unearthed a … Continued

Read More

International data transfers: the impacts of Schrems and Brexit on the GDPR. Week 47.

The European Commission published a draft decision and some guidance on standard contractual clauses for transferring personal data outside the European Economic Area (EEA). These have been a long time coming, but in light of the recent Schrems II ruling and Brext’s impending arrival they’re a welcome breath of clarity. So what does it all … Continued

Read More

9 things you should not do when you are running a gap analysis.

A gap analysis can be a helpful way to keep your company compliant, but these complicated procedures often lay the groundwork for errors. Some mistakes are small and easily fixed with more attention to detail. Others will take longer to work out, largely because they require a full overhaul of the process. However, there are universal … Continued

Read More

Master your GDPR employee training with 3 simple steps

How your company complies with GDPR has a lot to do with how aware your individual employees are. Your staff doesn’t need to be reminded of the importance of privacy, but they may need better training to understand exactly how to live up to the expectations of data controllers today. We’ll look at three ways … Continued

Read More

GDPR and direct marketing. What the ICO’s enforcement action against Experian tells us. Weekly Digest 44

After taking a week’s breather, it’s again an action by the ICO that draws my attention. On Tuesday, the ICO issued an enforcement notice to Experian. Experian was one of three credit reference agencies that the ICO has been auditing for the last two years after a complaint from Privacy International. As I’ve mentioned in … Continued

Read More