UK companies who collect, store, or process personal data may need to register with the ICO however registration is not always necessary and there are several exemptions which may apply. Where applicable registration is a legal obligation and the ico can issue pretty serious fines if you fail to register and pay the appropriate fee. […]
Article 27 of the General Data Protection Regulation (GDPR) remains one of its most misunderstood requirements, even as we move into 2024. This article is a crucial part of your GDPR compliance, especially if your business operations fall outside the European Union (EU) or the United Kingdom (UK) but involve processing data from these regions. […]
Read More… from Do I need an Article 27 Representative? Understanding Your GDPR Obligations in 2024
As your Article 27 Representative we will always help if you receive a SAR, RTE, or other data protection complaint. It is always best to avoid these all together but most companies will receive GDPR requests at some point. Disgruntled ex-employees, annoyed customers, malicious compensation-scammers are common sources of SARs and unfortunately these can result […]
We have said this previously but we are still seeing a huge number of Subject Access Requests [SARs]. A SAR is a request made by or on behalf of the data subjects which grants the right to obtain a copy of all the personal data that an organization has collected about them. These are pretty […]
Summary: The Right to Be Forgotten is one of the fundamental rights defined in GDPR. Also known as a Right to Erasure this principle defined in Article 17. It is vital that companies recognize these requests and understand how to deal with them. Most importantly the Right to Erasure is not an absolute right and […]
The Fourth quarter of 2021, really confirmed that 2021 is the year of fines. We did an overview of the following period so kindly find information about the fines issue at the end of the year. GDPR fines in total In the last quarter of 2021, data protection authorities have steadily continued dishing out fines. […]
The steady growth of the use of video surveillance systems across public and private sectors, has led to both fixed and mobile cameras becoming more accepted in society. As video surveillance technology becomes more mainstream and affordable, it is now more common to see technologies such as smart doorbells and wireless cameras. Traditional closed circuit […]
What is a DPA? A data processing agreement (DPA) is a legally binding document to be entered into between the controller and the processor in writing or in electronic form. It regulates the particularities of data processing – such as its scope and purpose – as well as the relationship between the controller and the […]
Read More… from Everything you need to know about a Data Processing Agreement
Hello everyone, Last week we have introduced you to the cyber insurance and why is this important for your company. A kind reminder on the following : Cyber insurance (also referred to as cyber risk or cyber liability insurance) is a form of cover designed to protect your business from threats in the digital age, such […]
source: www.penneo.com […]
Read More… from Important news: New IDTA and Addendum to the EU SCCs
+44 1772 217800
+353 01 554
9700 
+1 303 317
5998