Results for keyword: data processing

It’s almost been a year since the implementation of GDPR, but the legislation’s importance hasn’t depreciated at all. In fact, ongoing compliance is more significant than ever – especially given the recent political turbulence surrounding Brexit negotiations.

Yet, despite the new data protection guidelines having been introduced last year, it’s been reported that 38% of firms haven’t even heard of GDPR. So, it came as no surprise at this month’s Data Protection Practitioners’ Conference when the UK’s information commissioner, Elizabeth Denham, announced UK businesses are coming in below par when it comes to GDPR accountability.

At the event, Elizabeth revealed: “the next phase of GDPR requires a refocus on comprehensive data protection – embedding sound data governance in all business processes.”

And, this is the inspiration behind our latest blog. We want to help companies identify whether or not they would pass an official ICO audit with ‘high assurance’, as well as flag the questions they need to ask themselves, when it comes to the storage and processing of personal data.

Published in Blog
Monday, 26 March 2018 08:00

Is your printer a GDPR danger zone?

For many SMEs, dealing with sensitive information is just another part of everyday operations. Whether you work within retail, healthcare, security, professional services, law or finance – or pretty much any industry, to be honest! – the chances are you’ll handle some form of personal data in your day-to-day work activities.

You may have heard of a little thing called the General Data Protection Regulation (GDPR), which is a new legislation devised to uphold the rights of individuals when it comes to how this information is obtained, stored and processed. Set to come into effect on 25 May this year, businesses across the EU – and the rest of the world – are now scrabbling around trying to prepare themselves for the changes as we speak.

Published in GDPR

There’s no shortage of information out there about the importance of security when it comes to protecting sensitive data – especially with the GDPR looming. But with just two months to go before this new legislation kicks in, there are still certain aspects that haven’t been given the attention they really need.

One such area is security. There are reams of advice about how crucial it is for businesses of all sizes to have effective defences in place, in order to safeguard personal information – but what precisely does this involve?

Published in GDPR

Recent research commissioned by North West IT specialist Q2Q IT has revealed that a third of respondents are worried about the impending General Data Protection Regulation (GDPR).

Due to be implemented on 25 May this year, this EU-wide directive is set to replace the existing Data Protection Act 1998 and will govern how organisations can obtain, process and retain personal information.

Published in Q2Q News

As more and more SMEs begin to realise the importance of getting a head-start on GDPR compliance, we’ve been out and about helping them understand where changes need to be made in their personal data processing.

Of course, every company is different – no two organisations handle data in identical ways and processes differ considerably from sector to sector. The steps to achieving compliance for a marketing agency will vary from those required by a legal firm, for example.

Published in GDPR

As you know, personal data processing is a crucial part of day-to-day life for accountancy and tax practitioners. And whilst altering procedures and processes to fit within a new framework is hardly our idea of fun, there are definite advantages to streamlining the personal data you hold on file, refining your methods of acquiring, storing and updating it and improving your security measures.

So, instead of putting it off for even longer, why not make sure you’re preparing yourself and your practice for the GDPR now? That way, you can start reaping the benefits of compliance before the laws come into full force.

Published in GDPR

Under the rules of the GDPR, any individual whose data is being held by an organisation can make a Data Subject Access Request (DSAR). In simple terms, this is an appeal in writing for any information held by the company that relates to the data subject.

Published in GDPR

While the GDPR might seem complex, at its core is the protection of privacy. And although there are many articles and compliance restrictions that make up the new regulations, the GDPR is fundamentally based on six principles relating to the processing of personal data:

Published in GDPR

The main responsibilities of the Data Protection Officer are to:

·         Inform and advise on GDPR matters relating to the organisation’s activities

·         Monitor compliance with the GDPR

·         Consider and implement Data Privacy Impact Assessments (DPIA)

·         Liaise with the Supervisory Authority

Ultimately, the DPO needs to understand the GDPR requirements, act as a knowledge source for the rest of the organisation, and be mindful of the risks surrounding ‘personal data’ processing.

Published in GDPR

The term ‘large scale’ is a relative, rather than quantitative measure.

Published in GDPR