hi@fortis-dpc.com | 03333 22 10 11

Our Blog

The source

Welcome to our blog, The Source.

Welcome to our blog, The Source.

I know that business compliance can sometimes be overwhelming and I want to help you find your way to being and staying complaint.

THS SOURCE is a place for you to access and find out about the latest topics and insights that could  impact your compliance for GDPR, ISO, Cyber Security and PCI DSS.

Howard Freeman

Post-Brexit Data Protection

by | 10 Feb 2021 |

The Brexit transition period ended on 31st December 2020. UK organisations that process personal data must now comply with the following laws: The DPA (Data Protection Act) 2018 and UK GDPR (General Data Protection Regulation) if they process only domestic...

Data Subject Rights and the GDPR

by | 10 Feb 2021 | ,

The EU GDPR (General Data Protection Regulation) gives individuals eight rights relating to their personal data. Organisations must let individuals know how they can exercise these rights and meet requests promptly. Failure to do so is a breach of the GDPR....

GDPR and Encryption

by | 10 Feb 2021 | ,

Pseudonymisation and encryption are the only technological measures specifically mentioned in the GDPR (General Data Protection Regulation). But what exactly is meant by ‘pseudonymisation’ and ‘encryption’? Are these measures mandatory? More importantly, how can...

GDPR Processing Lawful Bases

by | 10 Feb 2021 | ,

The EU GDPR (General Data Protection Regulation) states that you need to identify a lawful basis before processing personal data. But, what is a lawful basis for processing? Do you always need individuals’ consent to process their data? And what is meant by the term...

ISO 27001 and GDPR Compliance

by | 10 Feb 2021 | ,

Anyone struggling with the EU GDPR (General Data Protection Regulation) should look no further than ISO 27001. It’s the international standard for information security. The ISO 27001 framework is close enough to the Regulation’s that many experts consider it a perfect...

GDPR Risk Assessments

by | 10 Feb 2021 | , ,

Your business is required to comply with the GDPR (General Data Protection Regulation). Therefore you are obliged to conduct regular GDPR risk assessments. This isn’t just because the Regulation says that you should. Risk assessments are essential for...