SAR Support During the Summer Holidays: Why Organisations Struggle and How to Stay Compliant Every year, as summer arrives and schools break up for the six-week holiday, many organisations begin to feel the pressure. But it’s not just the heat or the juggling of annual leave rotas that causes challenges. For data protection teams across…
-
-
Privacy and Electronic Communications Regulations (PECR) – Masterclass Join Data Protection People for an essential full-day masterclass focused on the Privacy and Electronic Communications Regulations (PECR) and how they interact with UK GDPR. This online session is tailored to help professionals understand how to manage electronic communications lawfully, meet consent requirements, and ensure cookie compliance…
-
Online Safety Act Enforcement: Immediate Action Required for UK Businesses July 2025 marks a critical turning point in the UK’s Online Safety Act (OSA) implementation. After extensive preparation, Ofcom has now commenced active enforcement of key provisions, issuing deadlines that demand immediate attention from businesses providing online services with a significant UK user base or…
-
The MoD’s Data Breach: What You Need to Know A major data breach by the Ministry of Defence (MoD) has come to light, putting thousands of lives at risk and costing the UK government hundreds of millions of pounds. The details were kept under wraps by a super injunction until now. Here’s what happened, why…
-
The UK GDPR mentions “appropriate technical and organisational measures” almost 100 times. What this means and covers, however, is not exactly clear. This law consists of two key aspects: data security and protection. Data protection focuses on the legality of processing and collecting personal data. Data security, on the other hand, examines the security measures…
-
12,194. That’s the number of data breaches that were reported to the ICO in 2024. Even worse, these incidents don’t reflect the number of data subjects affected. A single breach could have a widespread impact on hundreds of thousands of individuals. Data breaches happen when data controllers and processors don’t have the “appropriate technical and…
-
Are the New Complaint Provisions the Most Impactful Changes in the Data (Use and Access) Act? Over the past week, I’ve read 30 or 40 blogs on the Data (Use and Access) Act 2025 (“DUA”). Many of them expertly written by leading legal professionals who offer detailed analysis of the legislation. But most focus squarely…
-
As with any form of compliance, businesses must overcome several hurdles on their path to becoming compliant with the GDPR. Through the help of our data protection consultancy, we are able to provide businesses with the insight they need to know whether they’re on the right track. Along with simplifying compliance, our GDPR consultants are…
-
Almost every business relies on a network of suppliers to develop, deliver and maintain its products and/or services. Working with third-party processors, such as a payment processor or CRM provider, will help streamline workflows and allow you to serve customers with ease. However, as this supply chain grows, more people outside of your organisation will…
-
The Data (Use and Access) Act 2025 The Data (Use and Access) Bill has now reached Royal Assent and will soon be officially enacted as The Data (Use and Access) Act 2025. This new legislation marks a significant milestone in the UK’s data protection law, modernising how data is accessed, used and governed in a…
Join our community
Our mission is to make data protection easy: easy to understand and easy to do. We do that through the mantra of benchmark, improve, maintain.