Compliance and Data Protection Blog

How to verify the identity of a requester in a GDPR data subject access request

The EU’s General Data Protection Regulation (GDPR) ensures that data subjects can retrieve their personal data from the data controllers promptly. For example, if your business runs an online website which allows customers to create and manage their own account, you should make it easy for customers who forgot their password to retrieve their login … Continued

Read More

Achieving GDPR Compliance: Ways to Perform a Gap Analysis

GDPR compliance is no small matter for any company, but the way you go about it makes all the difference. With the right tools at your disposal, it can be manageable. A GDPR gap analysis shows you where you are on the road to compliance compared to where you should be. It helps you patch … Continued

Read More

Case Study: How GDPR365 Software Helps Advanced Overwatch in Their Compliance journey

In this GDPR case study implementation, we will have a look at Advanced Overwatch and their journey to become GDPR compliant. Advanced Overwatch is a leading surveillance service provider in Ireland, Scotland England, and Wales. They are known for providing top-notch CCTV and specialist security systems for businesses and residential customers. What sets the company … Continued

Read More

Simplifying the Records of Processing Activities Feature

According to the GDPR, a processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of a controller. Article 30 states that a processor must also maintain “Records of Processing Activities” carried out on behalf of a controller.Either entered individually, or using the client import template, … Continued

Read More

Complying with GDPR When a Subject Sends an Access Request

One of the many significant changes brought about by GDPR was the data subject’s greater right of access to personal information. And that is far-reaching. The data controller must fulfil a subject access request (SAR) within a month to comply with GDPR. So, the correct systems must be in place to make sure this happens. … Continued

Read More