Our Blog
The source
Welcome to our blog, The Source.
I know that business compliance can sometimes be overwhelming and I want to help you find your way to being and staying complaint.
THS SOURCE is a place for you to access and find out about the latest topics and insights that could impact your compliance for GDPR, ISO, Cyber Security and PCI DSS.
Howard Freeman
Cyber Essentials – the Danzell Update
Each year, the Cyber Essentials scheme is revised to ensure it remains relevant to the current threat landscape. This blog provides a summary of what’s new for 2026. We also detail how this year’s changes to the scheme affect your Cyber Essentials/Cyber Essentials...
The Cyber Threat
Internet connectivity brings great benefits. However, this is also exploited by those wishing to cause harm. It is important to identify those threats and help protect your business. Your prosperity depends on the internet. In an increasingly inter-connected world,...
Data Subject Access Requests – are you being responsive?
If you are not keeping up with your DSARs, you are not alone. Last week, the Information Commissioner's Office issued an enforcement notice to Bristol City Council for failing to respond to hundreds of Data Subject Access Requests (DSARs). Some of these DSARs dated...
Don’t Let a Website Hack Damage Your Online Reputation
Whether you are a sole trader, a small business owner or a large corporation, your website is at risk of being hacked at any time, if it isn't properly maintained. In our latest blog post, we take a look at a local cleaning company whose website was compromised last...
Securing Your Website: A Guide for WordPress Users
Powering over 43% of the World Wide Web, WordPress is one of the world’s most popular content management systems (CMS). Despite its popularity, thousands of WordPress sites are compromised every day. Why? Not because WordPress itself is insecure, but because these...
Significant Amount of Data Stolen in Legal Aid Cyber Attack
Over 2 million pieces of data of domestic abuse victims were downloaded from the Legal Aid Agency's online system. The Ministry of Justice reported that the hack was initially identified on 23 April 2025, but the extent of the attack was not known until 16 May 2025....