What is Schrems II? Last week, a ruling from the Court of Justice of the European Union caused quite a stir in the world of data protection. But what does it all mean – and what are the implications for …
Blackbaud Security Incident – what to consider
Categories: Breach, Guidance, Public Information, Security, TransparencyBlackbaud has informed its clients of a security incident. Protecture’s initial thoughts are: Blackbaud has taken the security incident seriously, and have taken significant measures in response. They have some assurance from the hacker that they have deleted the data …
Delayed Flight? Easyjet and When to Report a Breach
Categories: Breach, GDPR, Guidance, ICO, Public InformationProtecture often get asked, “When should I report a breach?” The Easyjet incident highlights that the risk to individuals’ rights and freedoms and the potential significance of even basic data must always be at the forefront of your assessment. When …
Webinar: How to Conduct a Data Protection Audit – from your desk
Categories: Data Protection Act 2018, GDPR, Guidance, WebinarData Protection touches so many areas of an organisation. So where do you start an audit? You might want to know if your policies and procedures cover all the areas they should. Or you might be trying to understand …
Cathay Pacific Enforcement Action
Categories: Fines, ICO, Public InformationThe ICO has recently issued an enforcement notice under the Data Protection Act 1998 against Cathay Pacific Airways imposing a monetary penalty notice of £500,000 (the maximum allowable) for breaches of the data protection principles. Primarily these related to the …
ICO Coronavirus Statement
Categories: Guidance, ICO, Public InformationThe ICO has released some brief guidance for organisations around some of the main issues relating to coronavirus and the use or sharing of personal data. Our quick summary of the issues that need to be taken into account: Always …
Webinar: GDPR and Working from Home
Categories: Data Sharing, GDPR, Public Information, Security, WebinarThe Coronavirus will create numerous risks for organisations over the coming months. Many businesses are looking to home working to ensure staff can continue to be productive in the event of restrictions of movement or temporary office closures. This means …
Webinar: DPO – Do I Need to Appoint One?
Categories: UncategorisedWith the first GDPR fine under our belt, and more due soon, the role of Data Protection Officer (DPO) will continue to be sought after. Yet for many organisations, there is no legal requirement to appoint one. A Data Protection …
New Draft of ePrivacy Regulation
Categories: GDPR, Guidance, ICO, Public Information, SecurityThe European Commission has just published (21st February) a new draft of the long-awaited ePrivacy Regulation as there was a failure to reach agreement on the previous draft. This Regulation will replace the ePrivacy Directive of 2002 that is enacted …
ICO Updates: Code of Practice
Categories: UncategorisedDirect Marketing Code of Practice The ICO recently published its draft Direct Marketing Code of Practice for consultation. It will be an important document for all organisations conducting direct marketing activities. “Direct marketing” is defined widely within the draft: “Direct marketing includes the …