Information Security Blogs | Everything you need to know
  • Who Needs a ROPA and Why?

    Under the UK General Data Protection Regulation (GDPR), the majority of organisations processing personal data are required to create and maintain a formal record of processing activities (ROPA). It is widely regarded as the core data protection compliance document. In this, the first of two blogs on ROPAs, we are going to address two fundamental questions.

  • Contact Us – Thank You Page

    THANK YOU! Your registration has been received and we will be in contact shortly before the event date with more information. ABOUT US URM CONSULTING URM is dedicated to providing high quality, cost effective and tailored consultancy and training in the areas of information security, data protection, business continuity and risk management. URM’s mission, through […]

  • Contact Us – Thank You Page

    THANK YOU FOR YOUR REGISTRATION A confirmation email with information on how to join the webinar will be sent to you in the next 48 hours (Monday to Friday). ABOUT US URM CONSULTING URM is dedicated to providing high quality, cost effective and tailored consultancy and training in the areas of information security, data protection, […]

  • PCI DSS v4 – Changes at a Glance

    PCI DSS v4 – Changes at a Glance After several years wait, and to surprisingly little fanfare, the Payment Card Industry Security Standards Council (PCI SSC) released the new version of the PCI Data Security Standard (DSS) on 31 March 2022.  It has been 4 years since the last minor update (v3.2.1) and nearly 9 […]

  • Responding to Data Subject Access Requests (DSARs) – Factors to Consider

    Responding to Data Subject Access Requests (DSARs) Let’s face it. There is nothing straightforward or simple about responding to a data subject access request (DSAR). The words ‘I want all of my data’ equate to hours of trawling systems, reviewing content, redacting files, and collating information before any disclosure can take place. Dealing with DSARs […]

  • UK International Data Transfer Agreement

    UK International Data Transfer Agreement On 2 February 2022, the Information Commissioner’s Office (ICO) laid before Parliament changes around restricted international personal data transfers. The international data transfer agreement (IDTA) and the UK Addendum to the current European Commission’s standard contractual clauses (SCCs) are the next steps in providing a transfer tool for complying with […]