Tag Archives for " ICO "

UK Privacy Regulator Open to Self-Certification under GDPR

Organizations in Europe may eventually be able to self-certify that they are compliant with the EU’s General Data Protection Regulation, an official at the U.K.’s independent privacy watchdog said. But at the moment there is no such thing as GDPR certification; there is only compliance that you can work toward.

Source: GDPR: UK Privacy Regulator Open to Self-Certification

GDPR offers tech providers an opportunity to develop compliance tools

There is an opportunity for technology providers to develop new tools to help businesses comply with their legal obligations under the General Data Protection Regulation (GDPR).

The good news for technology companies considering new data protection compliance tools is that a new regulatory sandbox for digital innovations is to be established by the UK’s data protection watchdog, the Information Commissioner’s Office (ICO).

Source: GDPR offers tech providers an opportunity to develop compliance tools

ICO publishes finalised guidance on consent under the GDPR

Businesses that rely on consent to process personal data under the new General Data Protection Regulation (GDPR) will have an opportunity to build customer trust and obtain a competitive advantage, but will face additional compliance burdens, according to the Information Commissioner’s Office (ICO).

Source: ICO publishes finalised guidance on consent under the GDPR

ICO launches consultation on stronger regulatory action and continues with its micro-targeting investigation

UK’s Information Commissioner today launched a consultation on stronger powers which are written into the Data Protection Bill currently going through Parliament.

The Report stage in the House of Commons was scheduled for 9th May. Proposed new powers include no-notice inspections, compelling people and organisations to hand over information and making it a criminal offence to destroy, falsify or conceal evidence. The ICO’s ability to use many of its powers, including going to court to request a warrant to search a premises, is based on the UK’s domestic legislation, not the GDPR.

Source: ICO launches consultation on stronger regulatory action and continues with its micro-targeting investigation – Privacy Laws & Business

ICO’s Denham: May 25 is not doomsday

As the opening act for the sold-out Data Protection Intensive here in London today, U.K. Information Commissioner Elizabeth Denham set to rest some of the common misconceptions she knows privacy professionals are losing sleep over as the countdown to the General Data Protection Regulation slinks near single-digits.

The approach to data protection, and the enforcement of it, should and will be the same 36 days from now as it ever was: Following the rules is the way to go. But if you fail there, yeah, there are going to be some problems.

Source: ICO’s Denham: May 25 is not doomsday

UK’s DPA releases data protection self assessment tool

The ICO’s data protection self assessment toolkit helps you assess your organisation’s compliance with data protection law and helps you find out what you need to do to make sure you are keeping people’s personal data secure.

The toolkit is made up of a number of checklists which cover data protection assurance, how to get ready for the General Data Protection Regulation, information and cyber security, direct marketing in line with the Privacy and Electronic Communications Regulation (PECR), records management, data sharing and subject access, and CCTV.The data protection toolkit is suitable for all businesses and will be particularly helpful to small to medium enterprises.

Source: Data protection self assessment | ICO

Why ISO 27001 is integral to data protection compliance

With the EU General Data Protection Regulation (GDPR)’s compliance deadline looming, any organisation that processes EU residents’ data will likely be investigating implementation options to help tackle its compliance project, if it hasn’t already done so.

Supervisory authorities such as the ICO have highlighted ISO 27001, the international standard that describes best practice for an information security management system (ISMS), as a way to provide assurance that the necessary technical and organisational requirements to prevent a data breach are in place.

Source: Why ISO 27001 is integral to data protection compliance – IT Governance Blog

1 2 3 9
>