Blogs

  • The CJEU Declares the EU-US Privacy Shield Invalid and SCCs Valid…but with Conditions, services, consultancy, data protection, data privacy, EU-US Privacy shield, CJEU, SCCs, gdpr, Court of Justice of the European Union

    The CJEU Declares the EU-US Privacy Shield Invalid and SCCs Valid…but with Conditions

    What are the Implications and Next Steps for Your Organisation? On 16 July 2020, the Court of Justice of the European Union (CJEU) issued its judgement on the adequacy of both the Privacy Shield and standard contract clauses (SCCs). The EU-US Privacy Shield is a mechanism that enables participating companies to meet the EU requirements for […]

  • Cyber Essentials Applications – Top 3 mistakes made by organisations

    As an accredited Cyber Essentials certification body (CB), URM handles a significant number of applications every year from a wide variety of organisations and business sectors. For many organisations looking to achieve cyber essentials certification, having to complete a self-assessment can be challenging, particularly if they have not previously had to verify their IT infrastructure […]

  • A 4 stage Approach To Determining A Business Continuity Strategy, business continuity strategy, iso 22301, iso 22301 strategy, ISO 22301 strategy, continuous improvement, continuous improvement diagram, business continuity continuous improvement strategy, business continuity continuous improvement strategy diagram , business continuity plan, business continuity planning

    A 4 stage Approach To Determining A Business Continuity Strategy

    Clause 8.3 of the ISO 22301:2019 (ISO 22301) Standard for Business Continuity states that: “Based on the outputs from the business impact analysis and risk assessment, the organization shall identify and select business continuity strategies that consider options for before, during and after disruption. The business continuity strategies shall be comprised of one or more […]

  • Transferring Personal Data with the EU - Are SCCs the Answer?, data protection, personal data transfer, personal data, dp, uk data protection, urm blog, data protection blog, gdpr blog, gdpr

    Transferring Personal Data with the EU – Are SCCs the Answer?

    With the transition period following the UK’s exit from the EU set to end on 31 December 2020, those organisations that rely on personal data transfers from the EU to the UK are looking to ensure that the transfers remain lawful from 1 January 2021. While there are a couple of frontrunners amongst the options […]

  • Importance of Assessing COVID-19 Risks Before Reopening Your Workplace

    Need to engage employees in risk assessment process As the gradual easing of lockdown continues, more and more organisations are looking at how they can open workplaces back up. Below is the downloadable poster that the UK Government recommends all employers display to show that its guidance has been followed.  Top of the list – ‘we […]

  • Reputational Winners and Losers and Lessons to be Learned, services, consultancy, covid, covid-19, business continuity, reputation,

    COVID-19 – Reputational Winners and Losers and Lessons to be Learned

    In our ‘Plan for Business Continuity – Tips On How To Protect Your Reputation and Brand’ blog, we looked at the importance of an effective BC response from a reputational and brand perspective. Here, we take the opportunity to put the theory into practice and provide our thoughts on who have been the winners and […]

  • Business Continuity Plan - Learn How Protect your Reputation & Brand, services, consultancy, business continuity, plan, business continuity plan, bc, iso 22301, iso 22301 plan, business continuity plan blog, reputation management plan, urm consulting blog

    Plan for Business Continuity – Tips On How To Protect your Reputation and Brand

    A common theme that has been running through our previous business continuity (BC) related blogs, has been the mantra ‘Welfare, Delivery, Reputation’, which provides a great guiding principle for organisations of any size when dealing with or preparing for an unforeseen disruption, incident or crisis. It should go without saying that the welfare of employees, […]

  • How to ensure data protection compliance as you return to the workplace

    Following the coronavirus (COVID-19) lockdown, the return to the workplace is presenting organisations across the globe with a number of challenges. In this blog, we will be addressing the challenge of maintaining compliance with applicable data protection legislation as new controls are proposed that involve processing staff health data for new purposes. Compliance Wheel: Assess the […]

  • Business Continuity Plans within the PCI DSS | URM Consulting, blog, pci dss, business continuity, business continuity plans, pci dss and business continuity, iso 22301, urm consulting, pandemic planning pcidss,,

    Business Continuity Plans within the PCI DSS

    A great many organisations have recently realised that their business continuity plans (BCPs) failed to consider a scenario in which a global pandemic necessitates total remote working.  As such, continuing to maintain business as usual with staff confined to their homes has been challenging.  Not least of the many challenges, this has created concerns PCI […]