CONTACT US 0845 345 5004

Codes of Conduct

So – what is a Code of Conduct?Article 40 of the GDPR refers to the use of codes of conduct in order to contribute to the proper application of the GDPR, taking into account specific features of the various processing sectors and specific needs of micro, small and medium-sized enterprises. The ICO has now issued guidelines in relation to use of codes of conduct covering UK processing. Whilst the ICO are not responsible for drafting codes of conduct, they are responsible for approving all codes drafted by trade associations or other bodies representing a sector. Trade associations and other representative bodies can...
  916 Hits
916 Hits

So how long is too long….?

With the imminent arrival of GDPR, thousands of organisations across Europe, small and large, are undoubtedly having a last minute panic - trying to work out what personal data they hold, where they store it, what they should and shouldn’t be doing with it, whether they should in fact be using it and how long they can hold it for.This last consideration is one that is easy to ignore but is very important if the GDPR is to achieve its aims. Businesses can no longer store boxes full of client files containing personal details in storage cupboards and forget about them,...
  749 Hits
749 Hits

When Sensitive became Special

Screenshot 1
The GDPR aims to increase protection of personal data, promote accountability and transparency by data controllers and harmonize data protection laws across the EU.  Some personal data is given “extra” protection due to its sensitive nature and the GDPR calls this special category data.Special category data is similar to the concept of sensitive personal data under the 1998 Act. The GDPR has expanded the category slightly by adding genetic and some biometric data in the definition. Another differentiating factor is that the GDPR definition does not include personal data relating to criminal offences and convictions, instead setting separate safeguards for this...
  701 Hits
701 Hits

Time to pay up! The new registration fees for data controllers

The Information Commissioners Office is the UK’s independent body uphold information rights in the public interest, covering data protection legislation including the Data Protection Act, the Freedom of Information Act, the Privacy and Electronic Communications Regulations and of course the General Data Protection Regulation (GDPR).The ICO’s data protection work is currently funded through fees levied on organisations processing personal data, unless they are exempt. This is done under powers granted in the Data Protection Act 1998. The funding model is changing slightly and in February, the Government announced a new charging structure for data controllers to ensure the continued funding of...
  743 Hits
743 Hits

Who's in charge and what do they do...?

For non-lawyers trying to navigate their way through the sea of information out there on the web relating to data protection, one thing that can be rather confusing is working out who is who in terms of authorities.In the field of data protection, there are a few key names you need to know.The Information Commissioner’s OfficeThe Information Commissioner’s Office, or ICO, is the UK’s independent authority set up to uphold information rights in the public interest and they have a variety of functions.Under the Data Protection Act 1998 every organisation that processes personal information has to register with the ICO (unless...
  860 Hits
860 Hits

Contact us

Invalid Input
Invalid Input
Invalid Input
Invalid Input
Invalid Input
You must confirm you have read and accept our Website Privacy Policy.
Invalid Input