Synthetic data is a solution to the tension between the need for real data to train AI, test systems and run analytics, and the need to stay compliant and protect individuals’ data. If you’re worried about using sensitive personal information and GDPR, this could be the answer you’re looking for. In this article, we’ll talk…
-
-
AI and Privacy: Why the Signal Founder Is Concerned As artificial intelligence tools become more powerful, concerns about privacy are growing just as fast. The founder of Signal, the privacy-focused messaging app, has now turned his attention to what he sees as a fundamental problem with modern AI systems: the way they collect, process, and…
-
AI-Generated Fake Images and Data Protection: What the Grok Case Reveals Recent reports have raised serious concerns after the AI chatbot Grok was used to generate fake images of women and girls appearing undressed, without their consent. The incident has drawn criticism from UK ministers and reignited debate about how generative AI tools can be…
-
GDPR for Sports Clubs: Why Standard Compliance Advice Doesn’t Work (And What Does) How sports organisations can navigate data protection challenges with a framework built specifically for the sector. Three sports clubs. Three data breaches. Same problem: nobody knew what to do next. A Premier League academy discovers staff have been accessing player medical records…
-
Social Tenant Access to Information Requirements (STAIRs): What Housing Associations Need to Know From October 2026, social housing providers in England will face a new statutory transparency framework known as the Social Tenant Access to Information Requirements, commonly referred to as STAIRs. The regime introduces formal rights for tenants of housing associations and other private…
-
New UK Cyber Action Plan: What It Means for Public Services and Data Protection The UK government has announced a new Cyber Action Plan aimed at tackling growing cyber threats and strengthening the resilience of public services. The plan responds to increasing cyber attacks on councils, healthcare providers, and other public bodies that hold large…
-
UK-EU Cyber Dialogue: Strengthening Joint Cybersecurity Cooperation The third UK-EU Cyber Dialogue took place in Brussels on 9 and 10 December 2025, bringing senior officials from the United Kingdom and the European Union together to advance cooperation on cyber security policy, regulatory alignment and operational resilience. Held under the framework of the UK-EU Trade and…
-
US Travel Proposal Raises Data Protection Concerns for UK Tourists UK tourists planning a trip to the United States may soon face new and far-reaching data collection requirements. A proposal published by US authorities suggests that visitors from visa waiver countries, including the UK, could be required to provide up to five years of social…
-
EU-US Data Transfers: What UK Organisations Need to Prepare For EU-US data transfers continue to be a complex and evolving compliance challenge for organisations that transfer personal data from the European Union to the United States. A recent analysis from privacy group NOYB warns that existing mechanisms, including the Transatlantic Data Privacy Framework (TADPF) and…
-
Council Data Breach: London Boroughs Activate Emergency Plans After Cyber Attack Three London councils, including the Royal Borough of Kensington and Chelsea (RBKC), Westminster City Council, and Hammersmith and Fulham, have triggered emergency response plans following a significant cyber incident affecting shared systems. The attack, now under investigation by the National Crime Agency and GCHQ’s…
Join our community
Our mission is to make data protection easy: easy to understand and easy to do. We do that through the mantra of benchmark, improve, maintain.