This 1 year period ICO has published very beneficial documents that are very important for the Data protection of the subjects and related to other topics. In this post will share chronologicaly the most important events month by month. April 2021 We have published guidance on the National Security Provisions in Part 3 of the DPA18 and […]
Tag: GDPR
How should you write a consent request and what information it should contain?
How should you write a consent request? Consent requests need to be prominent, concise, easy to understand and separate from any other information such as general terms and conditions. Article 7(2) says: “If the data subject’s consent is given in the context of a written declaration which also concerns other matters, the request for consent […]
Read More… from How should you write a consent request and what information it should contain?
Guidance for the use of personal data in political campaigning
Introduction It is vital in any democratic society that political parties and campaigners are able to communicate effectively with voters. But it is equally vital for the integrity of elections and democracy that all organisations involved in political campaigning handle and process personal data in a way that is compliant with data protection law. In […]
Read More… from Guidance for the use of personal data in political campaigning
GDPR Regulations for CCTV , Photography and Video equipment and drones.
CCTV In general, CCTV is directed at viewing and/or recording the activities of individuals. Therefore, most uses of CCTV by organisations or businesses will be covered by the DPA. The ICO has also issued a code of practice that provides recommendations on the use of CCTV systems to help organisations comply with the DPA. CCTV […]
Read More… from GDPR Regulations for CCTV , Photography and Video equipment and drones.
Transferring personal data by USB device
USB devices offer a convenient way to transfer data between two computers. However, their small physical size and large data capacity means that large volumes of personal data can be lost or stolen with relative ease. Furthermore, if personal data is not securely wiped from USB devices prior to reuse there is a possibility that […]
What is the difference between GDPR and PECR
Data protection and marketing are so closely interconnected that no marketing plan involving data can move forward without getting data protection right. GDPR – General Data Protection Regulation – and PECR – Privacy and Electronic Communication Regulations – are regulations concerning data protection that marketers must familiarise themselves with. The two regulations are complementary, indeed […]
Read More… from What is the difference between GDPR and PECR
Principle (c): Data minimisation
What is the data minimisation principle? Article 5(1)(c) says: “1. Personal data shall be: (c) adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (data minimisation)” So you should identify the minimum amount of personal data you need to fulfil your purpose. You should hold that […]
Dealing with Children’s Data
According to the GDPR, children merit specific protection with regard to their personal data, as they may be less aware of the risks, consequences and safeguards concerns and their rights in relation to the processing of personal data. Definition under the GDPR Any information given to, or provided in communication with, a child must be […]
EU Commission’s approval of the UK’s adequacy
The EU Commission has announced on 28.06.2021 that adequacy decisions for the UK have been approved. This means the EU has determined the UK’s data protection laws to be robust enough to ensure data can safely flow to the UK from the EU (and EEA). Approved adequacy means that businesses can continue to receive data […]
Read More… from EU Commission’s approval of the UK’s adequacy
EU Releases New Standard Contractual Clauses for Cross-Border Data Transfers
The European Commission published two sets of new standard contractual clauses (SCCs) governing cross-border data transfers and data exchanges between controllers and processors (i.e., service providers), marking the first updates to SCCs in more than a decade. The long-awaited new SCCs reflect evolved data protection laws such as the General Data Protection Regulation (GDPR), as […]
Read More… from EU Releases New Standard Contractual Clauses for Cross-Border Data Transfers