Category: Blog

DATE November 15, 2019 12:48 pm POSTED BY CATEGORY Blog

Beware software with no delete function

You may have missed the fine of €14½ million imposed by the data protection authority of Berlin on Deutsche Wohnen SE, a property management company who were found to use software systems that do not allow for the deletion of data.  This regulatory action resonated with the Outsourced DPO because...
View Article »
DATE June 7, 2019 10:37 am POSTED BY CATEGORY Blog

GDPR in the fast lane.

The Outsourced DPO has often compared data protection law to driving within the speed limit but a phone call last night changed that perception. Driving home last night, the Outsourced DPO was mulling over a customer brief for a DPIA on a project involving facial recognition when he suddenly remembered...
View Article »
DATE February 1, 2018 4:51 pm POSTED BY CATEGORY Blog

Brexit may lead to greater restrictions on the transfer of personal data from the EU to the UK. UK organisations will need to be prepared.

When the UK leaves the EU on 29th March 2019 the GDPR will already have become law in every other EU member state. The regulations governing the international transfers of personal data are set out in Chapter V of the GDPR. It stipulates that, for the purposes of data transfers...
View Article »
DATE February 1, 2018 4:39 pm POSTED BY CATEGORY Blog

Data Breach Compensation: The New PPI?

The decision in the High Court relating to the theft and publishing of the supermarket giant Morrison’s payroll data by a rogue employee throws up interesting points about liability in the event of data loss. In December 2017 Mr Justice Langstaff ruled that the technical and organisational controls in place...
View Article »
DATE October 2, 2017 2:58 pm POSTED BY CATEGORY Blog

Data Processors wake up to the GDPR

We undertook a GDPR impact assessment for a large data processor recently and I thought it might be worth sharing our findings and thoughts.  Not surprisingly we identified three sources of threat: a processor’s suppliers, their customers, and their ability to meet their own responsibilities set out in the GDPR....
View Article »
DATE September 8, 2017 7:34 am POSTED BY CATEGORY Blog

Is GDPR really an IT problem?

Owing to the word “data” in the Data Protection Act, and due to the lack of teeth and importance that data protection has historically been afforded, for the large majority of clients we have worked it is the IT team who have been tasked with ensuring an organisation is compliant...
View Article »
DATE February 20, 2017 12:42 pm POSTED BY CATEGORY Blog

Preparing for the GDPR in Social Housing

As the 25th May 2018 edges closer and closer, we here at Data Protection People have been busy making sure that everyone is up to speed and in the midst of getting fully compliant with the GDPR. One major event occurring the last day of January saw us open up...
View Article »