Compliance and Data Protection Blog

Why and How, our software now has a Data Protection Impact Assessment Feature.

What is a DPIA? A DPIA (Data Protection Impact Assessment) is executed by an organisation to analyse, identify and mitigate risks to personal information held by them affected by a project, a change or a new scenario in their organisation. Personal data and sensitive personal data held by organisations are dynamic. Organisations are constantly changing … Continued

Read More

Data Protection and your employees. Weekly Digest 41

The Data Protection Authority of Hamburg (HmbBfDI) fined H&M, one of the largest global clothing retailers, €35.2 million for excessive monitoring of employees. This should highlight to all companies the importance of employee data protection.Just so you remember here are some of the other fines: France’s CNIL fined Google €50 million for lack of transparency … Continued

Read More

Social Dilemma; Why they do not care about data privacy and protection regulations?

Social media has become an undeniable force in people’s lives today, and this applies in nearly every corner of the globe. In fact, there are nearly as many social media users as there are internet users*. Even those who aren’t on social media are aware of its powerful reach and its ability to influence the … Continued

Read More

The 3 questions you should ask before doing a data mapping

An example of data mapping visualization We tend to think of data as relatively static. Systems might be updated from time to time, but most of the time the information is organised and then forgotten about. Ideally, though, there needs to be more attention paid to the nature of your data, both how it was … Continued

Read More

5 types of businesses which are data processors and data controllers

Reflecting back on my post from Friday on joint controllers, I thought it might be useful to reflect on a couple of instances where your data processors might also be controllers. These are situations where you would probably just think about getting Data Processing Agreement in place, but you should really think about whether you … Continued

Read More