Fairness under the GDPR The first data protection principle contained within Article 5 of the GDPR is that of ‘lawfulness, fairness and transparency’. The ‘lawfulness’…
Important criminal offences under the Data Protection Act 2018 The UK’s Data Protection Act 2018 (DPA 2018 or ‘the Act’) sits alongside and supplements the…
Five key learnings from ICO audits of NHS Trusts In December 2020, the Information Commissioner’s Office (ICO) published a report that summarised their findings from…
Publicly Displaying Personal Data Under GDPR When reading through enforcement cases across Europe, in relation to non-compliance with GDPR (General Data Protection Regulation), every now…
What can health and care organisations in the UK learn from enforcement activity across Europe? The pandemic and the various ways Governments are developing and…
Your (often unused) power to audit data processors Contained deep within the GDPR is a hidden power often underutilised by data controllers. Article 28(3)(h) compels…
The ICO’s Accountability Framework – keeping data protection on your radar The word ‘accountability’ is only mentioned three times in the GDPR. This may sound…
Operational Resilience and COVID-19 At this unsettling time globally, detailed planning across all activities is essential to allow us to sensibly tackle the challenges we…
PCI-DSS v4.0 – What you need to know Antony Tuttle, Senior Consultant and QSA at Xcina Consulting, offers his insights on the latest PCI-DSS Standard…
Background The Financial Reporting Council (FRC) published their revised UK Corporate Governance Code on 16 July 2018. The new Code applies to accounting periods beginning…