Discover the comprehensive range of data protection services at Data Protection People. Tailored to meet the unique needs of your organisation, our expert team has successfully handled every challenge imaginable. Whether you’re navigating compliance complexities or enhancing data security, trust DPP to be your partner in safeguarding information.
Data Protection People have a wide range of training services catering for every need. Whether its general training for operational or admin staff or specific training for specialist roles, we have something for you. watch the short video below to meet the team and find out more about our training services.
Contact Us
DataWise is the original privacy tech platform designed to simplify GDPR compliance management. Since its inception in 2011, DataWise has continuously evolved, solidifying its reputation as the pioneering "privacy tech" solution.
Contact Us
Unlock Compliance Excellence with Our GDPR Consultancy Services. Navigating the intricate realm of data protection laws and standards demands expert guidance.
Contact Us
A data protection officer doesn't have to be a full time employee and in many respects it's better to have a company like DPP take on the role. Watch the video below to find out more about our outsourced DPO and privacy officer services or reach out and get in touch with us.
Contact UsAt Data Protection People, our cyber security services are designed to fortify your digital defences. With a proven track record spanning diverse sectors in the UK, our seasoned team brings a wealth of experience in handling a wide array of cybersecurity challenges. Reach out to us and explore how DPP can enhance your organisation’s cyber resilience.
Our experts can support you with Dark Web Monitoring - Data Protection People offer a free dark web scan for your organisation.
Contact Us
A PCI assessment is an audit for validating compliance with the Payment Card Industry Data Security Standard (PCI DSS), a set of security standards for merchants who accept, process, store or transmit credit card information.
Contact Us
Our tailored program, guided by industry-certified experts, supports your ISO 27001 compliance journey. Whether you need advice on certification scope, assistance with remediation work, or comprehensive ISO 27001 consultancy, we’re here to guide you every step of the way.
Contact Us
Secure your organisation with Data Protection People's Cyber Security Support. Our expert team ensures cybersecurity excellence, offering tailored support for ISO27001, PCI DSS, Cyber Maturity, Cyber Essentials Plus, and more.
Contact Us
At Data Protection People, we recognise the dynamic challenges and unique responsibilities of the Data Protection Officer (DPO) role. Beyond offering standard support, we provide a comprehensive suite of services crafted to empower DPOs at every step.
Collaborative Community: Navigating the intricate landscape of data protection can be isolating. That’s why we’ve fostered a collaborative community of privacy professionals. As a DPO with us, you’re never alone. Our network serves as a forum for insightful discussions, sharing solutions, and building a sense of camaraderie.
Expert Guidance and Advice: The journey of a DPO is often filled with complex decisions. Our seasoned team of experts is your reliable resource, offering timely advice and strategic guidance. We’re not just a service provider; we’re your dedicated partners in overcoming challenges and making informed decisions.
Advanced Training for Continuous Growth: Stay ahead in your role with our advanced training programs. Tailored for DPOs, our courses delve into intricate aspects of data protection, providing you with a competitive edge. It’s not just about meeting the present challenges but ensuring your continuous growth and excellence in your role.
Audits, Assessments, and Document Reviews: Our services extend beyond conventional boundaries. From comprehensive audits and assessments to meticulous document reviews, we ensure that your data protection strategies are not only compliant but also optimised for efficiency.
Simplifying Complexity for Future Ease: Beyond addressing current challenges, our mission is to simplify the complexities inherent in data protection. By partnering with Data Protection People, you’re not just solving problems – you’re ensuring a smoother, more efficient role in the future. We streamline processes, making your responsibilities more manageable and your decisions more impactful.
At Data Protection People, our expertise spans across diverse sectors, ensuring that businesses of all sizes and orientations receive tailored Data Protection and Cyber Security solutions. From the dynamic commercial sector and agile SMEs to the impactful third sector and expansive multi-nationals, we extend our services to fortify the digital defences of every business entity.
Elevate your data protection and cybersecurity standards in the bustling landscape of the Commercial Sector. We offer tailored solutions designed to safeguard your sensitive information, ensuring compliance and resilience against evolving threats. Partner with us to fortify your digital assets and foster a secure environment for sustained growth.
Small and Medium Enterprises (SMEs) form the backbone of innovation. Our data protection and cybersecurity services are crafted to match the agility of SMEs. Navigate the digital landscape securely, optimize your operations, and scale confidently with our tailored solutions that prioritize your unique business needs.
For organisations in the Third Sector driven by purpose, our data protection and cybersecurity expertise align with your mission. Safeguard sensitive data, build stakeholder trust, and amplify your positive impact. Let our solutions be the backbone of your technology infrastructure, ensuring that your focus remains on making a difference.
For the global footprint of Multi Nationals, our data protection and cybersecurity services provide a comprehensive shield. Navigate the complexities of international regulations with confidence. From compliance strategies to threat intelligence, we've got your data security needs covered, empowering your multinational endeavors with resilience.
In the Public Sector, trust and accountability are paramount. Our data protection and cybersecurity consultancy ensures that your operations align seamlessly with regulatory requirements. From confidential citizen data to streamlined governance, our solutions empower public entities to serve with integrity and technological excellence.
Data Protection People have the UK’s #1 Data Protection Podcast with over 150 episodes available across all audio streaming platforms, we also post regular content designed to simplify complex areas of data protection and cyber security, check out some of the podcasts and articles below and make data protection easy today.
Understanding and navigating the complex landscape of data protection is crucial for businesses of all sizes. With new regulations constantly shaping the way organisations handle personal data, it’s no longer just a compliance requirement but a core component of building trust and safeguarding your reputation. At Data Protection People, we believe in making data protection simple and accessible, which is why we’re excited to offer our Certificate in Data Protection Management (DPM Cert) training course. Whether you’re a Data Protection Officer (DPO), a Privacy Advisor, or simply someone looking to enhance your understanding of data protection, our course is designed to provide you with the skills you need to succeed.
Data protection laws are constantly evolving, and organisations face growing pressure to comply with regulations like the UK GDPR and the Data Protection Act 2018. The risks of non-compliance are significant, with penalties, reputational damage, and loss of consumer trust at stake. However, understanding the nuances of these laws can be challenging.
That’s where our DPM Cert comes in. Our training course offers a comprehensive foundation in data protection, focusing on essential principles of privacy, information rights, and lawful data processing. With a blend of practical skills and theoretical knowledge, this course will ensure you’re prepared to support data protection in any organisation.
This course is ideal for:
Whether you’re new to the field or looking to build on your existing knowledge, our course is designed to provide you with the practical skills and legal understanding required to navigate today’s data protection landscape.
The Certificate in Data Protection Management provides a robust curriculum that spans 12 weeks, combining theoretical knowledge with real-world application. Key topics covered include:
At Data Protection People, we take a hands-on approach to data protection. Our course isn’t just about understanding the theory; it’s about applying that knowledge in real-world scenarios. Here’s what sets our course apart:
We understand that time is valuable. That’s why our course is structured for maximum flexibility, with workshops held once a week from 09:30 to 15:30 over nine weeks. You’ll also benefit from a one-week revision period leading up to your open-book assessment. The sessions are delivered via Microsoft Teams, and all materials are recorded, so you can learn at your own pace and revisit content as needed.
Additionally, you’ll receive a digital copy of our comprehensive Information Governance Framework, ensuring you have access to the tools you need long after the course is complete.
Data protection doesn’t have to be complex. With the right knowledge, tools, and strategies, you can manage data protection confidently and effectively. Our Certificate in Data Protection Management equips you with the expertise to interpret and apply data protection laws, making compliance and security easier to navigate.
Take the first step towards mastering data protection and empowering your organisation. Sign up for the DPM Cert today!
With our expert guidance and flexible learning environment, you’ll finish the course ready to tackle the most pressing data protection challenges, all while ensuring your organisation remains compliant and secure.
Download our DPM Cert training brochure here!
The demand for Data Protection Officers (DPOs) has surged. Under the UK Data Protection Law certain organisations are required to make a statutory appointment of a DPO, while others choose to do so to enhance their compliance efforts. But what does it take to become a Data Protection Officer? This guide outlines the essential skills, qualifications, and responsibilities required on how to become a data protection officer.
A Data Protection Officer is a designated individual responsible for overseeing an organisation’s data protection strategy and ensuring compliance with UK GDPR, the Data Protection Act 2018, and other relevant privacy laws. The DPO acts as a bridge between regulators, organisations, and data subjects.
Under Article 37 of UK GDPR, appointing a DPO is mandatory for organisations that:
Even if your organisation isn’t legally required to appoint a DPO, having one can demonstrate a strong commitment to data protection and help mitigate compliance risks.
DPOs must have a thorough understanding of data protection laws, including UK GDPR, the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR). They must also stay updated on evolving regulations and industry best practices.
Since a DPO provides guidance on compliance, they must be able to interpret complex legal documents, draft policies, and advise senior management on regulatory obligations.
A DPO should be skilled in identifying, assessing, and mitigating risks related to data processing. This includes conducting Data Protection Impact Assessments (DPIAs) and ensuring that organisational processes align with legal requirements.
A DPO must be capable of explaining complex regulations in a simple, understandable manner. They should be able to provide training for employees, communicate policies clearly, and liaise effectively with regulators and external stakeholders.
DPOs must be adept at identifying privacy issues, finding practical solutions, and balancing business needs with regulatory requirements.
While not necessarily an IT expert, a DPO should understand cybersecurity concepts such as encryption, access control, and breach response protocols.
Handling sensitive personal data comes with ethical responsibilities. A DPO must ensure that data protection measures align with legal obligations and uphold individuals’ rights.
While there is no single qualification required to become a DPO, certain certifications and degrees can significantly enhance your credibility.
Experience in compliance, legal advisory, IT security, risk management, or information governance provides a strong foundation for transitioning into a DPO role.
If you’re already employed, volunteering to oversee GDPR compliance, internal audits, or privacy impact assessments can help build relevant experience.
Joining professional associations such as the International Association of Privacy Professionals (IAPP) and attending industry conferences can help you stay ahead in the field.
Completing professional courses and obtaining industry certifications strengthens your qualifications and improves career prospects.
Industries Hiring DPOs
Becoming a Data Protection Officer requires a combination of legal knowledge, compliance expertise, risk management skills, and strong communication abilities. While formal qualifications help, experience in data protection and continuous professional development are key to excelling in this role.
If you’re looking to enhance your data protection knowledge or need expert guidance in your DPO role, Data Protection People can help. Contact us today to explore our training and consultancy services.
Businesses handle vast amounts of sensitive data. Whether it’s customer information, employee records, or financial details, ensuring your personal data is in safe hands is crucial. Choosing a reliable business partner to process, store, or manage your data requires careful consideration.
Building trust with a business partner handling your data goes beyond checking certifications and legal compliance; it’s about establishing clear communication, shared values, and long-term reliability. This guide explores the key steps in selecting a trustworthy data-handling partner, ensuring compliance with UK laws, safeguarding your business against personal data breaches and regulatory penalties, and fostering a secure, trustworthy partnership.
Trust is the foundation of any successful business relationship, particularly when it comes to handling sensitive data. Before signing any agreements, engage in open and honest conversations about data security, compliance, and business values. It is important to consider the following:
A business partner should not only comply with regulations but also demonstrate an understanding of your specific industry’s data protection challenges.
It’s essential to understand UK Data Protection laws. The UK General Data Protection Regulation (UK GDPR), Data Protection Act 2018 and the Privacy and Electronic Communications Regulations (PECR) govern how businesses should handle personal data.
On top of this, there are numerous frameworks that organisations can adhere to in order to further strengthen their governance of personal data. Examples include but are not limited to:
A reliable data-handling partner must demonstrate full compliance with these principles and be able to provide documentation and evidence of their data protection policies.
Additionally, UK businesses that work with partners outside the UK or EEA must ensure adequate data protection mechanisms, such as Standard Contractual Clauses (SCCs) or UK International Data Transfer Agreements (IDTAs).
A good business partner should have robust security measures in place to protect your data. Key areas to assess include:
You should request security certifications and independent audit reports, such as SOC 2 Type II reports, to validate their security posture.
Reputable data-handling partners will have certifications that prove their commitment to data security and compliance. Look for partners who hold:
These certifications provide assurance that the partner follows industry best practices and has undergone independent security assessments.
When partnering with another business to process data on your behalf, a Data Processing Agreement (DPA) is required under UK GDPR. This contract should outline:
Please note, this list is not exhaustive.
A DPA ensures both parties understand their obligations, minimises legal risks, and protects against liability in the event of a personal data breach.
Before entering into a partnership, research the company’s ability to implement appropriate technical and organisational measures through various means:
A reliable data-handling partner should have a strong track record of compliance, transparent data protection policies, and a proactive approach to security.
Finding a reliable partner isn’t just a one-time process. Continuous oversight is required to maintain security and compliance. Businesses should:
Establishing regular security and compliance check-ins with your partner helps prevent issues and ensures data remains protected.
Choosing a reliable business partner to handle your personal data is a critical decision that requires thorough vetting. By focusing on trust, transparency, UK data protection laws, security measures, compliance certifications, and contractual agreements, you can build a strong, secure partnership.
At Data Protection People, we specialise in simplifying complex data protection issues. If you need guidance on selecting a data-handling partner or ensuring compliance with UK GDPR, get in touch with our expert consultants today.
Children today are immersed in the digital world, spending hours on social media and gaming platforms. While these spaces offer entertainment and connection, they also expose children to significant risks. Personal data is often collected, stored, and shared—sometimes without adequate safeguards. As data protection practitioners, businesses, and parents, we must ensure children’s data is protected and handled responsibly.
Many platforms rely on data collection for their business models, and children’s information is no exception. Social media apps track browsing habits, locations, and even biometric data. Gaming platforms encourage in-game purchases and often require extensive personal details for account creation. Targeted advertising can expose children to age-inappropriate content, while weak privacy settings make them vulnerable to online exploitation.
One major concern is how easily children’s data can be accessed or misused. Even when platforms claim to offer security, breaches and leaks happen. Data is often shared with third-party advertisers, meaning a child’s online behaviour could be tracked across multiple websites. This raises questions about consent and whether children (or their parents) truly understand what they’re agreeing to when they sign up.
In April 2023, TikTok was fined £12.7 million by the UK’s Information Commissioner’s Office (ICO) for misusing children’s data, including failing to obtain parental consent for users under 13 and not implementing adequate age verification measures.1
Also, as of March 2025, the ICO launched investigations into TikTok, Reddit, and Imgur to assess their compliance with children’s data protection regulations. These investigations aim to ensure that these platforms have robust safety measures to prevent exposing young users to inappropriate or harmful content.2
The gaming industry has also faced criticism for inadequate data protection practices. Regulators have fined video game companies for unlawful practices involving young people’s personal data, emphasising the need for stricter compliance with privacy and data protection laws.3
Finally, the UK government is considering a social media ban for children under 16. Chief Medical Officer Chris Whitty has been tasked to assess the potential risks and harms associated with children using social media, which could lead to increasing the digital “age of consent” from 13 to 16.4
These examples underscore the pressing need for enhanced data protection measures tailored to children’s online activities.
The UK General Data Protection Regulation (UK GDPR) explicitly recognises that children require greater protection when it comes to their personal data. This is because they may be less aware of the risks, consequences, and safeguards available to them. Recital 38 of the UK GDPR emphasises that children’s personal data merits specific protection, particularly in the context of online services such as social networking, gaming platforms, and digital marketing.
To address these concerns, UK GDPR imposes stricter obligations on organisations processing children’s data. Article 8 sets the legal age of digital consent at 13 in the UK, meaning that any online service provider offering services directly to children under this age must obtain verifiable parental consent before processing their data. Furthermore, organisations must ensure that privacy notices are written in clear, age-appropriate language, so children and their guardians fully understand how their information is collected, used, and shared.
The principle of data minimisation plays a crucial role in safeguarding young users, requiring that only the necessary amount of personal data is collected and retained for as long as needed. Additionally, the right to erasure, also known as the “right to be forgotten” (Article 17), allows children or their guardians to request the deletion of their data if it is no longer necessary or has been unlawfully processed.
A significant requirement under UK GDPR is that platforms must implement high privacy settings by default, particularly for children’s accounts. This aligns with the Age-Appropriate Design Code (Children’s Code), issued by the Information Commissioner’s Office (ICO), which mandates that services likely to be accessed by children must provide a high level of data protection by design and default. Despite these legal requirements, enforcement remains a challenge, with many online platforms failing to fully implement child-friendly privacy measures, leaving young users vulnerable to data misuse and online exploitation.
The Online Safety Act 2023 introduces a comprehensive legal framework designed to regulate online platforms and ensure the safety of children in the digital environment. Recognising the increasing risks posed by harmful content, data misuse, and exploitative online practices, the Act places a legal duty of care on service providers to identify and mitigate potential dangers to children using their platforms. This legislation is particularly relevant for social media networks, gaming platforms, and other digital services accessible to minors.
A key requirement under the Act is that companies must conduct mandatory risk assessments to evaluate how their platforms may expose children to illegal or harmful material, including content that promotes self-harm, exploitation, or misinformation. The legislation mandates that platforms implement proportionate measures to prevent such risks, ensuring compliance through robust safety mechanisms and content moderation systems.
Age verification and assurance mechanisms form another cornerstone of the Online Safety Act. Service providers are now legally obligated to implement technology that effectively determines whether a user is underage, thereby preventing children from accessing inappropriate or harmful content. This aligns with the Age-Appropriate Design Code (Children’s Code), which complements both UK GDPR and the Online Safety Act by setting high standards for protecting children’s data and ensuring digital services act in their best interests.5 6
Despite these legal safeguards, enforcement and implementation remain a challenge. Many online platforms still operate within regulatory grey areas, making compliance a complex but essential responsibility for organisations that process children’s data.
The protection of children’s data and online safety is a shared responsibility between organisations, regulators and parents. UK GDPR provides a strong legal foundation by requiring high privacy settings, minimal data collection, and clear parental consent mechanisms, while the Online Safety Act enforces stricter obligations on platforms to protect children from online harms.
For businesses, compliance is no longer an option but a legal necessity. Organisations processing children’s data must integrate privacy-by-design principles, conduct risk assessments, and implement robust age verification systems to meet their legal obligations.
Parents, too, play an essential role by actively engaging with their children’s online activities, leveraging their UK GDPR rights, and advocating for greater transparency from digital service providers. While legislation provides a crucial framework, the practical implementation of these laws will determine whether they effectively safeguard children in an increasingly digital world.
By adopting a proactive and legally sound approach, organisations can not only comply with evolving regulatory requirements but also build trust with users and create a safer, more responsible digital ecosystem for future generations.
This article was written by Data Protection Expert, Catarina Santos who will be joining our audience live on the Data Protection Made Easy podcast on the 14th of March 2024 between 12:30PM and 13:30PM. It’s completely free to join and anyone is welcome to get involved, if you would like to sign up for this upcoming discussion simply visit our events page and register for this discussion for free.
Written by Catarina Santos
Episode 209: Is Your Child’s Data Safe? Understanding Privacy Risks on Social Media & Gaming Platforms
Welcome to Episode 209 of the Data Protection Made Easy Podcast, where our expert hosts Catarina Santos, Philip Brining, and Joe Kirk discuss the crucial topic of designing a safer digital world for children. With increasing regulatory focus on protecting young users online, this episode explores the principles of ethical design, compliance with UK GDPR and the Online Safety Act, and best practices for organisations developing child-friendly platforms. This week’s GDPR Radio session was packed with insights, lively discussion, and active participation from our engaged community of listeners.
In this episode, our hosts explored the critical topic of children’s data privacy in the digital world. Special guest Catarina Santos led the discussion, shedding light on the risks and regulatory landscape surrounding young users’ personal information. Key discussion points included:
With growing scrutiny on how online platforms handle young users’ information, this episode is essential listening for data protection professionals, businesses, educators, and parents looking to stay informed and ensure compliance.
The Data Protection Made Easy Podcast is not just a source of expert insights—it’s an interactive, community-driven discussion. Every Friday at 12:30 PM (UK time), we host a free live session on Microsoft Teams, where attendees can:
✔ Engage with data protection experts in real-time
✔ Share experiences and learn from peers across industries
✔ Access valuable tools, templates, and guidance shared during the session
Want to get involved? Sign up for our upcoming episodes and receive weekly invites! Click here to register.
With over 1,400 subscribers and thousands of weekly listeners, the Data Protection Made Easy Podcast is the go-to platform for professionals who want to:
Best of all, our sessions are completely free, with no sales pitches—just high-value content, expert insights, and practical advice that you can take back to your organisation.
Couldn’t join live? No problem! Episode 209 of Designing A Child-Friendly Digital Environment is now available to stream on Spotify, Amazon Music, and all major podcast platforms.
🎧 Listen to this episode now: https://open.spotify.com/episode/31ccrFP582nQ8PCWQGqhGL?si=04f2caeffa374828
Next week, we return with a GDPR Radio episode Make sure to subscribe and stay updated with all our latest episodes!
Check out our full podcast library for more episodes. Explore past episodes here.
Welcome to Episode 208 of the Data Protection Made Easy Podcast, where our expert hosts Catarina Santos, Caine Glancy, and Joe Kirk dive into the latest news, trends, and regulatory updates shaping the world of data protection. This week’s GDPR Radio session was packed with insights, lively discussion, and active participation from our engaged community of listeners.
In this edition of GDPR Radio, our hosts explored the biggest stories in data protection, cybersecurity, and regulatory compliance, providing expert analysis on:
With live audience participation, our community contributed thoughts, experiences, and pressing questions, making this session a must-listen for data protection professionals, legal teams, and compliance officers looking to stay ahead of industry developments.
The Data Protection Made Easy Podcast is not just a source of expert insights—it’s an interactive community-driven discussion. Every Friday at 12:30 PM (UK time), we host a free live session on Microsoft Teams, where attendees can:
✔ Engage with data protection experts in real-time
✔ Share experiences and learn from peers across industries
✔ Access valuable tools, templates, and guidance shared during the session
Want to get involved? Sign up for our upcoming episodes and receive weekly invites! Click here to register.
With over 1,400 subscribers and thousands of weekly listeners, the Data Protection Made Easy Podcast is the go-to platform for professionals who want to:
Best of all, our sessions are completely free, with no sales pitches—just high-value content, expert insights, and practical advice that you can take back to your organisation.
Couldn’t join live? No problem! Episode 208 of GDPR Radio is now available to stream on Spotify, Amazon Music, and all major podcast platforms.
Listen to this episode now using the player below:
Next week, we return with a special topical discussion on “Ethical Design for a Child-Friendly Digital Environment.” Make sure to subscribe and stay updated with all our latest episodes!
Check out our full podcast library for more episodes.
Employee monitoring is becoming more widespread as organisations look to improve productivity, ensure security, and maintain compliance. But where do we draw the line between necessary oversight and employee privacy? In this week’s Data Protection Made Easy Podcast episode, Joe Kirk and Caine Glancy delve into the legal, ethical, and practical aspects of workplace surveillance and how businesses can navigate these challenges under UK GDPR.
With the rise of hybrid and remote working, many organisations have introduced monitoring tools to track employee performance, security, and system usage. But are these tools being used appropriately? Our hosts explore the different types of monitoring, including:
Organisations must carefully consider lawful bases when processing employee data. Monitoring activities must comply with UK GDPR principles, particularly:
The discussion also covers employee rights, including the ability to challenge intrusive surveillance and request access to monitored data.
While some level of monitoring may be necessary, excessive surveillance can erode trust, reduce morale, and even create legal risks. Joe and Caine examine:
How can organisations strike the right balance? Our hosts offer best practices for businesses, including:
If you’re an IAPP-certified professional, you can claim 1 Continuing Privacy Education (CPE) credit for every episode of Data Protection Made Easy you listen to. Simply track your attendance and submit the episode details via the IAPP portal.
Our podcast is designed to provide real-world insights and professional development, helping data protection practitioners stay up to date with industry trends.
The Data Protection Made Easy Podcast is completely free and designed to make data protection topics accessible, engaging, and easy to understand. With over 1,400 subscribers, our sessions provide a unique opportunity to connect with experts, discuss real-life challenges, and access valuable resources.
We host weekly sessions every Friday from 12:30 PM – 1:30 PM via Microsoft Teams. You can:
Sign up for a single session via our Events Page
Subscribe for weekly invites and never miss an episode
If you can’t join us live, you can listen back to all episodes on Spotify, Amazon Music, and other streaming platforms.
Listen to all past episodes here: Spotify Podcast Page
Friday, 7th March – GDPR Radio
Our fortnightly news round-up returns! We’ll cover the latest UK GDPR enforcement actions, ICO guidance, and industry developments.
Friday, 14th March – Designing for a Child-Friendly Digital Environment
How should organisations approach data protection for minors? Join us for a deep dive into ethical design, new regulations, and best practices for protecting children online.
Want to be part of the discussion? Sign up now and join the UK’s leading data protection podcast.
If you missed this episode, you can catch up anytime! Our full library of 200+ episodes is available to stream on demand.
Listen Now
Subscribe for future sessions
Whether you’re a DPO, privacy professional, or just passionate about data protection, we’d love to have you in our community. Join us every Friday for the latest insights from Data Protection People.
Love is in the air—but so are data risks! In this special Valentine’s Day edition of the Data Protection Made Easy Podcast, hosts Joe Kirk and Catarina Santos explore the hidden risks behind online dating, password sharing, and third-party trust in the digital world.
Whether you’re swiping right on a dating app or sharing your Netflix password with a loved one, personal data is constantly being exchanged. But how much do we really know about where that data goes and how secure it is?
Online dating has revolutionised the way people connect, but it has also created new privacy challenges. In this episode, we examine:
From streaming accounts to banking apps, many couples share passwords without considering the risks. We discuss:
Just as trust is essential in relationships, it’s also crucial when selecting third-party vendors who process personal data. In this section, we explore:
✔ Real-World Insights: Learn from real data breaches and mistakes made by companies handling personal information.
✔ Practical Advice: Understand what you can do to keep both personal and business data safe.
✔ Interactive & Engaging: Our hosts break down complex issues into easy-to-understand, relatable discussions.
This episode is part of our ongoing commitment to making data protection easy to understand and accessible. If you enjoyed the discussion, why not join us live next time?
🔹 We host live discussions every Friday at 12:30 PM (UK Time).
🔹 Sign up via our Events Page to get weekly invites.
🔹 Can’t make it live? Catch up anytime on Spotify, Amazon Music, or your favourite streaming platform.
Data protection isn’t just for businesses—it’s for everyone. Tune in to learn how to protect yourself and your organisation in a world where love and data are both at risk.
We host events on a weekly basis for the community of data protection practitioners and have built up a network of over 1200 subscribers, who tune in each week to listen to discussions about the hot topics from the fast-paced and evolving world of data protection and cyber security. Check out our upcoming events and become part of our growing community.
View AllOur mission is to make data protection and cyber security easy: easy to understand and easy to do. We do that through the mantra of benchmark, improve, maintain.
