hi@fortis-dpc.com | 03333 22 10 11
Data retention is an important part of your GDPR compliance. When did you last review your data retention? What you’re keeping and for how long? And of course, why? With new employment laws now enforced, the times for which you can hold employee data and former...
The European Data Protection Board has published an analysis by TJ McIntyre, one of their panel of experts, about legitimate interests, looking back at many cases where controllers have fallen foul of the GDPR by not applying it properly. It’s long and detailed,...
If you are not keeping up with your DSARs, you are not alone. Last week, the Information Commissioner's Office issued an enforcement notice to Bristol City Council for failing to respond to hundreds of Data Subject Access Requests (DSARs). Some of these DSARs dated...
An Overview of the General Data Protection Regulation (GDPR) Introduction The General Data Protection Regulation (GDPR) is a regulatory framework enacted by the European Union (EU) in 2018 to protect individuals' personal data and privacy. Since it came into effect,...
Are you confident that your business is fully GDPR compliant? With the General Data Protection Regulation (GDPR) in full effect, ensuring compliance is non-negotiable for businesses handling the personal data of EU citizens. Failure to adhere to GDPR principles can...
Find out what the data protection officer role involves and who or what you need to hire. The General Data Protection Regulations (GDPR) is something you've heard a lot about, whether you collect, store and use customer data, or you don't. It's the biggest...
On 25th May 2018 when the GDPR came into force, the European regulation attracted all the headlines. However, another price of regulation also came into law which acted differed from the EU GDPR. The Data Protection Act of 2018 is strewn with references to the GDPR...
It is almost four and a half years since the GDPR became enforced in May of 2018. Since that date, when the world went mad over consent, subscriptions and other connection requests that most of the requestors ignored, we have had Harry and Megan, Brexit, Covid-19 and...
BACKGROUND GFHR Consulting is as an Independent HR Consultancy based in South East England. Founded by Gemma Farina in 2010, Gemma and her team of HR experts have helped hundreds of small and medium sized organisations with their HR issues, requests and...
For many new businesses, celebrating a happy third birthday is a key milestone. However, reaching three years is not easy to achieve. This week we celebrated our third birthday and we had the opportunity to sit and discuss what we did well and also what we did wrong....
Accountants are very good with numbers as we all know and appreciate. However, is your data management up to the required standard? Was it within the last year. Did you cary out a thorough audit? Have you actually achieved compliance? Accountants! When was the last...
The Brexit transition period ended on 31st December 2020. UK organisations that process personal data must now comply with the following laws: The DPA (Data Protection Act) 2018 and UK GDPR (General Data Protection Regulation) if they process only domestic...
Anyone struggling with the EU GDPR (General Data Protection Regulation) should look no further than ISO 27001. It’s the international standard for information security. The ISO 27001 framework is close enough to the Regulation’s that many experts...
The Children's Code The Children’s Code (or Age Appropriate Design Code to give its proper title) is a data protection code of practice for online services. This includes apps, online games, and web and social media sites that are likely to be accessed by...
What’s the difference between personal data and sensitive data? Now that the GDPR (General Data Protection Regulation) has been in effect for over two years, you’ve likely become acquainted with the term ‘personal data’. But what exactly does personal data...
STATUTORY INSTRUMENTS 2003 No. 2426ELECTRONIC COMMUNICATIONSThe Privacy and Electronic Communications (EC Directive) Regulations 2003 Made - - - 18th September 2003 Laid before Parliament - - - 18th September 2003 Coming into force - - - 11th...
In case you didn’t know, but CCTV footage is subject to the GDPR (General Data Protection Regulation). The Regulation isn’t just about written or electronic data such as names and addresses. It applies to any information that can identify someone. That includes...
British firms face a bill of up to £1.6 billion if the UK government fails to win an EU adequacy decision. The decision, if granted, would allow dataflows to continue as normal. This was revealed by a new report published on Monday last (23rd November 2020). UK firms...