The Flowz Blog
Here are some articles published related to Flowz and GDPR that we think you’ll find interesting.
ICO invites organisations to submit Codes and Certification schemes
The ICO has published guidance for organisations wanting to develop GDPR Codes of Conduct or Certification schemes. Organisations can now submit their proposals to the ICO for approval. Ian Hulme, ICO Director of Regulatory Assurance, said: “I would encourage any...
The coronavirus outbreak is being used to spread malware
Cyber criminals are exploiting the public’s fear of the Wuhan coronavirus outbreak in a new phishing scam, researchers have learned. Experts at IBM discovered a spate of phishing emails being sent to Japanese citizens, asking them to open an attached Word document...
What the GDPR’s Article 30 and Article 32 mean for managing risk within your business
The old cliche runs that failing to prepare is preparing to fail. While many businesses may feel comfortable with their level of data protection compliance more than a year after GDPR, the reality is far more nuanced. Different parts of the regulation are designed to...
Data protection and no-deal Brexit for small businesses and organisations
Guidance and resources to help businesses and organisations better prepare for data protection compliance after a no-deal Brexit. This guidance is designed to help small to medium-sized UK businesses and organisations keep personal data flowing with Europe (the EEA)...
GDPR: What’s the difference between personal data and sensitive data?
Now that the EU GDPR (General Data Protection Regulation) has been in effect for over a year, you’ve likely become acquainted with the term ‘personal data’. But what exactly does personal data mean? And did you know that the GDPR includes a sub-category of sensitive...
Will Your Staff Cost You Millions in Data Breaches?
Financial services organisations have never been more at risk of data breaches. A recent report by RPC found that the number of data breaches reported by UK financial services firms increased 480% in 2018, with the retail banking sector seeing the largest relative...
Why ISO 27005 risk management is the key to achieving ISO 27001 certification
If you’re familiar with ISO 27001, you’ll know that it’s the international standard for information security and contains the certification requirements that are expanded upon throughout the ISO 27000 series. There are 46 standards in total in the series (although...
GDPR and Brexit – a view from the European Commission
Officials from the European Commission outline what Brexit will mean for GDPR compliance, including the current extension until the end of October. What happens to GDPR during the Brexit extension period? The UK remains an EU member state and so EU law is still...
GDPR – Six key stages of the Data Protection Impact Assessment (DPIA)
GDPR – Six key stages of the Data Protection Impact Assessment (DPIA)The DPIA is one of the specific processes mandated by the General Data Protection Regulation (GDPR). Organisations must carry out a DPIA where a planned or existing processing operation –“is likely...
Automating customer consent: data privacy in the age of data capitalism
Unless businesses want to be on the front page; consumer trust in data privacy is essential. GDPR introduces the key principles of data privacy by design and default. Consumers and business are recognising that data privacy is more than just data...