I’ve seen a few suppliers make classic errors dealing with breaches in their client’s data. Here are the top three errors suppliers make and 5 suggestions to avoid them!
Legal Basis Review
Category: Legal Basis Management
Customer: King's Inn's
We have worked as DPO with King’s Inns since 2019. As part of our role we have documented a Record of Processing Activities. We continually review the ROPA to ensure that the legal basis for processing is accurate. In particular all processing undertaken on the legal basis of consent has been reviewed to ensure that the consent is collected at the point of collection of the relevant personal data, the language around the consent is clear to ensure that the user understands what the consent is provided for and access to the data protection statement is provided.
Fort Privacy provide an all-round service, coaching and guiding us on our GDPR journey. Practical and knowledgeable, they have been invaluable
Join Our Newsletter
Sign-up to receive news and information from Fort Privacy
Fort Privacy processes your personal data in order to respond to your query and provide you with information about our products and services. Please see our Data Protection Statement for further information
The General Data Protection Regulation is “risk” based legislation. This means that the protective measures an organisation implements should correspond to the level of risk associated with their data processing activities. It’s worth noting that the risk that should be considered here, is the risk to the data subject as opposed to risk to the business of non-compliance.
Data Protection Programmes are all the rage these days. It’s great to see the compliance conversation moving in this direction. As a Data Protection Officer (DPO), I know the difference between working with a solid data protection programme and working with none and all.