In November, our hosts, Joe, Phil, and Jasmine covered the latest updates in data protection, the challenges between controller and processor relationships, and the recently revealed DUA Bill. 

Find out what’s discussed in each episode below. 

Data Protection Made Easy: November’s Recap 

Episode 193: GDPR Radio – The Ripple Effect

In our first GDPR radio session, hosts Joe and Phil invited Catarine Santos, our data protection consultant, to discuss the latest industry news. They discussed how a single industry change can create a ripple effect across businesses of all sizes.

Take data breaches, for example. Usually, there is a guilty party (the controller and/or processor) and a victim—the data subject. This breach affects more than these parties, impacting the wider supplier chain that has ties to the business. The same goes for regulatory changes – particularly the proposed DUA Bill, which we discuss in episode 196. 

The Data Protection Made Easy podcast is a community resource that helps DPOs and professionals stay updated on industry changes and their potential impact. Listen to episode 193 to find out what you missed. 

Episode 194: Understanding Data Protection Relationships

Under the UK GDPR, your business has varying obligations depending on your role in handling personal data. You may be a data controller, joint controller or processor. 

A data controller decides the purpose and means of processing personal data. In comparison, a data processor handles data on behalf of the controller. If multiple controllers share control of the data for the same reason, they’re considered joint controllers.  

Episode 194 uncovers the legal obligations tied to these roles and the complex relationship between data controllers and processors. Our hosts also discuss ways to ensure compliance across both parties, including filling out a DPIA and formalising partnerships in a written agreement. 

Want to learn more? Listen to episode 194 on demand.  

Episode 195: GDPR Radio – Data Breaches, Blunders & Big Tech

Our second GDPR radio session focused on the latest news in data protection and real-life cases from our host’s day-to-day work.

Jasmine shared her experience working on a data breach that led to 400 letters being sent to the wrong addresses. Our hosts assessed how these breaches happen and the legal rights data subjects can enforce when affected. 

Later in the podcast, Joe and Catarina discussed several other cases, including the Farley v Paymaster court appeal and the ICO doubling down on big tech organisations. Listen to episode 195 for more expert insight. 

Episode 196: SARs and the Data (Use & Access) Bill 

In October 2024, the government published the Data (Use & Access) (DUA) Bill, the newest revision of the conservative parties’ failed DPDI Bill. While the DUA Bill drops several controversial reforms in the DPDI Bill, it appears to change how organisations handle subject access requests (SARs). 

Our hosts break down the Bill’s key components, including ways to handle SARs in accordance with these changes. Learn more about the DUA Bill in episode 196 and subscribe to the podcast for further insight as the Bill develops through parliament. 

Subscribe to Our Award-winning Podcast Today!

The Data Protection Made Easy podcast is a go-to resource for over 1,300 industry professionals. By joining our community, you’ll gain CPE credits for every episode and have exclusive access to live sessions.

Looking for hands-on data protection support? Contact our team today!