Your relationship with third parties comes with countless risks: they can breach the terms of your contract, suffer a data breach or incur business disruptions affecting your supply chain. These occur a lot more often than you might think. A 2021 Ponemon...
A researcher has discovered a design flaw in the metaverse that allows children to view sexually explicit material. Posing as a 13-year-old, a BBC News researcher visited the virtual reality world and witnessed avatars simulating sex. She was able to view...
Under the GDPR (General Data Protection Regulation), organisations and their suppliers can be held accountable in the event of a data breach. This is why it’s essential for data controllers to review the information security practices of data processors before agreeing...
Data quality management can be complex, especially if you don’t know the extent of the data you hold or fully understand all of its applications. Proper data governance is essential to your organisation’s ongoing success: as the quality, relevance and accuracy of data...
Under the GDPR (General Data Protection Regulation), organisations can be held responsible for data breaches that occur at suppliers that don’t have appropriate protections in place. That’s why it’s essential that organisations review third parties’ data protection practices before partnering with...
Max Schrems’ privacy group, NOYB, is targeting organisations that make it difficult for people to opt out of tracking cookies. The group launched 422 formal complaints last month, claiming that the organisations in question were violating the GDPR (General Data Protection...
The EDPS (European Data Protection Supervisor) and the EDPB (European Data Protection Board) recently released a statement calling for a ban on the automated processing of biometric data. This includes facial recognition software, fingerprints, retinal scans and voice recognition software –...
Organisations of all sizes rely on data protection policies and procedures to ensure that they process information effectively and in line with their regulatory requirements. But creating this documentation is often harder than it looks, with a lack of resources and...
Organisations that conduct international data transfers have had a frustrating few months. First, the European Court of Justice invalidated the EU–US Privacy Shield, then the UK left the EU without a clear legal basis for transferring personal data. If you’re confused...
Sooner or later, employees leave – and in almost all cases, they take their organisation’s sensitive data with them. You might think this threat is limited to employees who have been sacked or feel mistreated, but it’s a far more widespread...