Author Archives for: Philip Brining

dpo, dpia, data protection impact assessments, ico, gdpr, data protection act, general data protection regulation, ico guidance, gdpr training, data privacy, privacy risks
DATE January 17, 2019 11:00 am POSTED BY CATEGORY Blog

Outsourced DPO: DPIA revisited

The Outsourced DPO wrote a blog about Data Protection Impact Assessments (DPIA) last November shortly before the ICO revised their guidance. In this blog, we review the ICO’s updated guidance and share the Outsourced DPO’s experiences from auditing in the lovely Essex this week. It is actually very easy to...
View Article »
outsourced dpo, no deal brexit, brexit gdpr, brexit scenarios, uk brexit, gdpr brexit, ico, european economic area, data protection officer, data protection, data privacy, data law
DATE January 9, 2019 9:50 am POSTED BY CATEGORY Blog

Data Protection and a no deal Brexit

Hard Brexit The Outsourced DPO has been looking at the impact of a hard Brexit for some of his clients – what a roller coaster ride that is.  In her blog of 13th December, Elizabeth Denham stated that, “the Government has already made clear its intention to permit data to...
View Article »
DATE October 2, 2017 2:58 pm POSTED BY CATEGORY Blog

Data Processors wake up to the GDPR

We undertook a GDPR impact assessment for a large data processor recently and I thought it might be worth sharing our findings and thoughts.  Not surprisingly we identified three sources of threat: a processor’s suppliers, their customers, and their ability to meet their own responsibilities set out in the GDPR....
View Article »
DATE September 8, 2017 7:34 am POSTED BY CATEGORY Blog

Is GDPR really an IT problem?

Owing to the word “data” in the Data Protection Act, and due to the lack of teeth and importance that data protection has historically been afforded, for the large majority of clients we have worked it is the IT team who have been tasked with ensuring an organisation is compliant...
View Article »
DATE August 27, 2017 6:47 am POSTED BY CATEGORY GDPR

Legitimate Interests and e-mail direct marketing

By Philip Brining, Consulting Director of Data Protection People. I have been asked several times over the summer to comment on various suggestions that it will be possible to rely on legitimate interests as the legal basis for direct marketing post May 2018 under the General Data Protection Regulation.  However,...
View Article »