Pub and restaurant chain apps are requiring such data as gender and marital status. This is raising eyebrows among privacy campaigners and industry analysts alike. The Information Commissioner’s Office warned that many pubs and restaurants were asking customers for...
Archives
Howard Freeman
GDPR and Data Retention
Data Protection Law has changed in the United Kingdom as we have now left the European Union. The General Data Protection Regulation (GDPR) requires organisations to create a GDPR and data retention policy's schedule. Its purpose is to help them manage the way they...
Parliamentary committee to scrutinise Online Safety Bill
A so-called 'super committee' has been formed to scritinise the governments harm online strategy and approach. This committee will be made up of MP's and Lords. This new committee is now seeking input from the public about their views on the legislation. The...
Plans to tackle legal but harmful content will threaten free speech
A report from the House of Lords has criticised the government’s forthcoming Online Safety Bill. The criticism imposes duty of care on the tech platforms. This is when dealing with what has been called legal but harmful content. The claim is that the bill threatens...
Is New York the next City to enforce Data Protection?
New York Consumer Privacy Bill is to be Reintroduced On 13th May 2021, New York State Senator Kevin Thomas, the Chair of New York’s Consumer Protection Committee, reintroduced the New York Privacy Act (“NYPA”). The act is designed to be a comprehensive consumer...
Practice Hub Data Breach
A story from last month that Practice Hub, an online service for Chiropractors and other practices, was breached. Details emerged in May about a serious incident involving the Practice Hub data breach. We have been working to find out exactly what has happened and...
GDPR Compliance is only ever a phone call away
BACKGROUND GFHR Consulting is as an Independent HR Consultancy based in South East England. Founded by Gemma Farina in 2010, Gemma and her team of HR experts have helped hundreds of small and medium sized organisations with their HR issues, requests and...
Tories fined for Breach of the PECR
The Conservative party has been fined £10,000 for a breach of the PECR, the ICO announced today. The fine is for sending 51 marketing emails to people who did not want to receive them. The fine follows an ICO investigation relating to emails sent from the Conservative...
GDPR – 3 Years and counting
The 25th May 2018 saw the GDPR become enforced in law. But what exactly changed and where are we now? The flurry of emails demanding your consent to this that and the other have now ended thankfully. Businesses have now realised that consent is not the only way to...
ISO or not ISO? Now that is the question!
The International Standard for Organisation develop and publish standards and has as its members 165 national standards bodies. Commonly known as the ISO derived from the Geek word 'isos', meaning equal. However, when is ISO not ISO and how can you tell the...
What does Cyber Essentials Cost?
Cyber Essentials is one of the most cost-effective ways to boost your organisation’s information security. But, what does Cyber Essentials cost? Designed to help organisations address common weaknesses Designed to help organisations address common weaknesses, it can...
ISO 27001 implementation for small businesses – fast!
Small businesses are increasingly understanding the importance of ISO 27001, the international information security standard. However, many struggle to find the resources needed to commit to an implementation project of this type. Our team of experts will have you...
Happy third Birthday
For many new businesses, celebrating a happy third birthday is a key milestone. However, reaching three years is not easy to achieve. This week we celebrated our third birthday and we had the opportunity to sit and discuss what we did well and also what we did wrong....
Accountants! When was the last time you reviewed your GDPR?
Accountants are very good with numbers as we all know and appreciate. However, is your data management up to the required standard? Was it within the last year. Did you cary out a thorough audit? Have you actually achieved compliance? Accountants! When was the last...
What is the most secure way to transmit data?
Safe information transfer is a must for modern organisations, but not all secure data transmission methods are equal. Here we explore the options available to you. A significant issue facing businesses is implementing secure data transmission methods when sending and...
GDPR Compliance Checklist
1. Obtain board-level support and put accountability measures in place 2. Plan your GDPR compliance project and its scope 3. Conduct a data inventory and data flow audit 4. Undertake a comprehensive risk assessment 5. Carry out a detailed gap analysis 6. Develop...
A Letter From the ICO
Many businesses have now received a letter from the ICO asking for a registration fee of £40 or £60. We are being asked all the time whether or not the letter is genuine and whether a business needs to pay. Every organisation or sole trader who processes personal...
Post-Brexit Data Protection
The Brexit transition period ended on 31st December 2020. UK organisations that process personal data must now comply with the following laws: The DPA (Data Protection Act) 2018 and UK GDPR (General Data Protection Regulation) if they process only domestic...