Getting in front of a data breach or data subject access request.
Much time has passed since the implementation of the GDPR and Data Protection Act (DPA) in 2018 and the Information Commissioner’s Office (ICO) has now started to show its teeth. Record fines have been issued to British Airways and the Marriott hotel chain and there will doubtless be more to follow.
Organisations should now have their ‘house in order’, in terms of data protection policies, procedures and security. However, even the most compliant of organisations will at some point be approached for a DSAR (Data Subject Access Request) or suffer a data breach. How your business deals with that breach or request could be the difference between a small ‘slap on the wrist’ and much more serious enforcement action, along with the painful damage to brand and reputation that can follow.
How Collyer Bristow can help:
DATA BREACH & DSAR RESPONSE
Compliance with the GDPR is not just about having the right policies and procedures in place, it is mainly about putting them into practice effectively and consistently. There are a few simple things that can be done to limit the risks for your business.
Tips on maintaining the security of personal data while working from home
With offices mainly moving to remote working, it is important that employees are keeping vigilant to ensure the personal data being dealt with is kept secret and confidential and used for the proper purpose. Read our six tips to help manage the data protection risks whilst working outside the office.