The Flowz Blog
Here are some articles published related to Flowz and GDPR that we think you’ll find interesting.
What the GDPR’s Article 30 and Article 32 mean for managing risk within your business
The old cliche runs that failing to prepare is preparing to fail. While many businesses may feel comfortable with their level of data protection compliance more than a year after GDPR, the reality is far more nuanced. Different parts of the regulation are designed to...
Data protection and no-deal Brexit for small businesses and organisations
Guidance and resources to help businesses and organisations better prepare for data protection compliance after a no-deal Brexit. This guidance is designed to help small to medium-sized UK businesses and organisations keep personal data flowing with Europe (the EEA)...
GDPR: What’s the difference between personal data and sensitive data?
Now that the EU GDPR (General Data Protection Regulation) has been in effect for over a year, you’ve likely become acquainted with the term ‘personal data’. But what exactly does personal data mean? And did you know that the GDPR includes a sub-category of sensitive...
Will Your Staff Cost You Millions in Data Breaches?
Financial services organisations have never been more at risk of data breaches. A recent report by RPC found that the number of data breaches reported by UK financial services firms increased 480% in 2018, with the retail banking sector seeing the largest relative...
Why ISO 27005 risk management is the key to achieving ISO 27001 certification
If you’re familiar with ISO 27001, you’ll know that it’s the international standard for information security and contains the certification requirements that are expanded upon throughout the ISO 27000 series. There are 46 standards in total in the series (although...
GDPR and Brexit – a view from the European Commission
Officials from the European Commission outline what Brexit will mean for GDPR compliance, including the current extension until the end of October. What happens to GDPR during the Brexit extension period? The UK remains an EU member state and so EU law is still...
GDPR – Six key stages of the Data Protection Impact Assessment (DPIA)
GDPR – Six key stages of the Data Protection Impact Assessment (DPIA)The DPIA is one of the specific processes mandated by the General Data Protection Regulation (GDPR). Organisations must carry out a DPIA where a planned or existing processing operation –“is likely...
Automating customer consent: data privacy in the age of data capitalism
Unless businesses want to be on the front page; consumer trust in data privacy is essential. GDPR introduces the key principles of data privacy by design and default. Consumers and business are recognising that data privacy is more than just data...
Customers need to be at the centre of GDPR plans
Responding to a breach is not just about data, it is about taking care of, and protecting, customers The new General Data Protection Regulation (GDPR) has shone a light on how businesses prepare for, and respond to, a data breach. With cyber criminals becoming...
UK trade sector risks GDPR fines over poor data disposal
In the two months following the introduction of the European Union’s General Data Protection Regulation (GDPR), 44% of businesses in the trade sector did not wipe the data from redundant IT equipment before disposal. This is the main finding of a survey of more than...