Cookie Compliance: Essential Considerations for Organisations Cookies are essential for enhancing user experiences and driving personalised marketing. However, they come with stringent compliance requirements under the UK’s Privacy and Electronic Communications Regulations (PECR) and UK GDPR. To help organisations utilise cookies effectively and legally, this guide provides a comprehensive overview of what cookies are, the…
-
-
As part of your accountability obligations, you should implement appropriate procedures, policies and measures to minimise risk and promote high standards across your organisation. A data protection policy is one way to demonstrate compliance with the UK GDPR. In this blog, we explain this policy, why it matters and what to include when writing one. …
-
New PCI SSC Guidance on PCI DSS v4.x E-commerce Security: What You Need to Know The PCI Security Standards Council (PCI SSC) is once again stepping up its efforts to bolster security in e-commerce environments. To help organisations navigate these requirements in PCI DSS v4.0.x, the PCI SSC will soon release guidance aimed at e-commerce…
-
ICO Issues Critical Recommendations to Improve Data Protection in AI-Powered Recruitment The Information Commissioner’s Office (ICO) recently released a comprehensive report on AI recruitment tools, sharing over 300 recommendations to protect job seekers’ information rights. With AI systems increasingly used to streamline recruitment tasks such as screening resumes and scoring candidates, these tools present both…
-
Data Protection Gap Analysis: The Essential Guide to Your GDPR Audit In the landscape of data protection, conducting a Data Protection Gap Analysis is a critical step for any organisation looking to strengthen its compliance with the General Data Protection Regulation (GDPR). A gap analysis not only identifies vulnerabilities but also sets the stage for…
-
Data Protection Job Opportunities at Data Protection People If you’re passionate about data protection and looking for a fulfilling career in an ever-evolving field, Data Protection People (DPP) could be the perfect place for you. We’re growing our Leeds-based team, offering exciting data protection job opportunities for those who are ready to take the next…
-
Giving Back with Data Protection People As we approach the end of the year, Data Protection People is gearing up to support several charitable causes that align with our values and commitment to community engagement. Over the past months, events like our charity bake-offs and the Macmillan Coffee Morning have brought our team together for…
-
This month, the Data Protection Made Easy podcast covered the latest updates in GDPR, ethical challenges in employee tracking, and AI’s evolving role in data privacy. From high-profile breaches to new regulations, our hosts, Joe, Phil and Jasmine, explore how these trends impact businesses and individuals. Find out what was discussed in our October round-up…
-
Managing Subject Access Requests (SARs) Should You Handle Subject Access Requests (SARs) In-House or Outsource to Data Protection People? Managing Subject Access Requests (SARs) can be challenging, time-consuming, and resource-intensive, especially when trying to maintain compliance with the GDPR and other data protection laws. In this guide, we’ll explore the complexities involved in handling SARs,…
-
Understanding ISO/IEC 42001: A Guide to AI Governance Standards from Data Protection People As Artificial Intelligence (AI) becomes more integrated into business operations, organisations need clear frameworks to govern and safeguard their use of these powerful technologies. The new ISO/IEC 42001 standard aims to address this by setting guidelines specifically for AI management systems, helping…
Join our community
Our mission is to make data protection easy: easy to understand and easy to do. We do that through the mantra of benchmark, improve, maintain.