Whatever your feelings about it are, the GDPR exists to ensure companies Get Data Protection Right. It’s not there to tyrannize companies or threaten them. Rather, it acts as a guiding set of principles that helps to ensure companies are good custodians of the personal data they use. We’ve identified nine pillars of data protection … Continued

Although GDPR supervisory authorities can issue fines when companies disregard data protection, it’s really a last resort. We encourage you to view the GDPR as a useful framework for getting your Data Protection Right. Seen in this light the GDPR can become a business opportunity rather than an obstruction. It’s a chance to make intelligent … Continued

It’s time to discuss one of the horrible truths of data protection and cybersecurity. This is that breaches will happen, no matter how many steps and procedures you put in place to avoid them. This is because systems are designed, built and run by people and people are not flawless. People make mistakes and this … Continued

We’ve begun to see news headlines where organisations receive fines for lack of adequate data protection. Regulators will never be able to police every non-compliant company, so what’s the data protection regulation for in most cases? While the GDPR is an enforcement framework, it is also a set of guiding principles that you can use … Continued

Because GDPR compliance is hard to achieve for many companies, there’s a tendency to see it as a negative thing. But is this true? If you view it as an ally and use GDPR to improve your data protection, you move nearer to compliance as a benefit. Start thinking of GDPR as “Getting Data Protection … Continued