It’s impossible to navigate the Internet today without being asked to hand over our personal details at practically every website we visit. Organisations use this information for a variety of purposes – some of which improve the user experience, while others...
A royalty audit is a way of ensuring that organisations are paying royalties correctly and in accordance with their contractual agreement. The audit investigates various obligations, with a focus on the financial terms and considerations that were previously agreed to –...
Are you thinking of conducting a GDPR (General Data Protection Regulation) gap analysis but are unsure of the benefits it will bring? There are several reasons you might be considering a gap analysis. You might wish to determine whether your organisation...
A supply chain audit is an in-depth review of the processes that an organisation follows to deliver goods and services. The purpose of the audit is to identify weaknesses and bottlenecks in those processes, and to discover opportunities for improvement. When...
An organisation’s relationship with its vendors comes with numerous risks. If you don’t pick the right partner, you could suffer data breaches, incur business disruption and face regulatory compliance problems. These issues are more common than you might think. According to...
Facial recognition software is one of the more innovative technologies shaping the way organisations operate. It can be used for all manner of purposes, from improving security monitoring to improving user experience with tailored settings and novel authentication methods. To use...
If you read the GDPR (General Data Protection Regulation) from cover to cover, you will find almost 100 mentions of “appropriate technical and organisational measures”. But as frequently as the concept is discussed in the Regulation, the text doesn’t provide a...
Under the GDPR (General Data Protection Regulation), organisations are required to adopt the principles of data protection by design and default. These concepts are not new to the GDPR; they previously fell under the umbrella of ‘privacy by design’. The change...
A cookie is a small piece of data created by a web server and placed on a user’s device. Depending on the purpose of the cookie, it might contain personal data and therefore be subject to the requirements of the GDPR...
Last year, John Edwards was confirmed to as Elizabeth Denham’s successor as head of the UK’s data protection authority, the ICO (Information Commissioner’s Office). Edwards, who joins on a five-year term, spent the past eight years as the New Zealand Privacy...