Category GDPR
3 risky things Board Members do with their emails
Are your Board Members or Trustees doing any of these 3 things with their emails, which are a risk to both your resources and relationships? 1. Using their personal or day-job email addresses for board related work. What’s the risk?…
How to manage data protection risks when buying software
Terrible Software Contracts This is a topic I’ve touched on in my last two blog posts, but as I keep seeing more terrible* contracts from software firms, I wanted to write in more detail about how to manage data protection…
What is Data Protection Governance & why is it so important?
We all remember the GDPR rush of 2018, when organisations raced to collect consents for marketing emails and publish updated Privacy Notices before the new data protection legislation – GDPR – came into effect on 25th May 2018. We were…
The Connection Between Data and Protection
If you work in social housing, have you noticed how much ‘data’ is being talked about in the sector at the moment? Data transformation projects, data analysis data, digital data, big data, AI, the Social Housing White Paper requirements, and…
Data Protection Basics – a handful of sand
]If you’re melting in this hot weather like I am, let’s not get hot and bothered trying to take in everything happening in the world of Data Protection (DP). Let’s concentrate on data protection basics – some no frills pointers…
Sending Emails Lawfully – How to comply with PECR & (UK)GDPR
How to carry out a DPIA or Risk Assessment – an Overview
Over the past month in our blog posts, we’ve talked about the risks linked to personal data, and its use (or misuse): how and when to identify and assess the risks, how to control them, and monitor them, and the…
Monitor risks and controls – DP Risk Assessments
In the last blog we looked at Controls & Conflict in DP Risk Assessments, and how to handle the reality that you may get pushback from the project team or from elsewhere in the organisation. You can read it by…
Guide to service emails Vs marketing emails
Under UK law, sending marketing emails to individuals requires prior consent, but what’s the difference between a marketing email and a service email, and how to send emails lawfully? We explain what you need to consider in this video.