GDPR - Data Protection Archives - Page 2 of 3 - URM
  • Transferring Personal Data with the EU - Are SCCs the Answer?, data protection, personal data transfer, personal data, dp, uk data protection, urm blog, data protection blog, gdpr blog, gdpr

    Transferring Personal Data with the EU – Are SCCs the Answer?

    Transferring Personal Data with the EU – Are SCCs the Answer? The answer is yes, but they come with additional administration overheads. For example, you could rely on the explicit consent of the data subject or the particular situation may deem that individual authorisation is not required, such as the protection of the data subjects’ vital […]

  • How to ensure data protection compliance as you return to the workplace

    How to Ensure Data Protection Compliance as you Return to the Workplace Following the coronavirus (COVID-19) lockdown, the return to the workplace is presenting organisations across the globe with a number of challenges. In this blog, we will be addressing the challenge of maintaining compliance with applicable data protection legislation as new controls are proposed that […]

  • GDPR, Brexit and the Adequacy Decision, brexit, gdpr, exit, european eunion, europe, leaving europe, urm consulting, news, blog, urm consulting gdpr, gdpr blog, brexit blog, brexit news

    GDPR, Brexit and the Adequacy Decision

    GDPR, Brexit and the Adequacy Decision Subject to approval from the European Parliament, the UK will formally leave the EU on 31 January with a withdrawal deal and will enter a transition period until 31 December 2020. With this in mind, where does that leave the UK from a data protection perspective and what steps, […]

  • DPO Blog: In-house Resource vs Virtual DPO, gdpt, data protection officer, general data protectionj regulation, data protection compliance, gdpr compliance, information security

    DPO Blog: In-house Resource vs Virtual DPO

    In-house Resource vs Virtual DPO This week’s blog takes a look at data protection officers (DPOs) and considers when to look in-house and when a virtual, external resource or hybrid resource may be a better option. So, let’s start by considering the requirement for a DPO.  Under Article 37 of the General Data Protection Regulation […]

  • Subject access requests (SARs) – The need for education and centralised processes, sar, sars, personal data, forms, gdpr, general data protection regulation, data protection , dp,

    Subject Access Requests (SARs) – The need for education and centralised processes

    Subject Access Requests (SARs) – The Need for Education and Centralised Processes In a previous blog, we looked at the importance of an organisation establishing a tried and tested subject access request (SAR) response process. Having a well-drilled team following a clearly defined process is all well and good but will be largely redundant if SARs […]

  • Data Protection | Management System Standards | Which is best for me? GDPR ISO 27001 , information security, infosec

    Data Protection and Management System Standards – Which is best for me?

    Data Protection and Management System Standards – Which is Best For Me? A question we are increasingly asked is ‘Is there a catch-all international standard that effectively proves external verification of data protection compliance?’ It would be great if the answer to that question was a simple yes, but currently, despite some disingenuous marketing to the […]