Data Protection Act

The Data Protection Act (DPA) is a United Kingdom Act of Parliament which was passed in 1988. It was developed to control how personal or customer information is used by organisations or government bodies. It protects people and lays down rules about how data about people can be used. The DPA also applies to information or data stored on a computer or an… Read the full article

GDPR privacy notice

A privacy notice is a public document from an organization that explains how that organization processes personal data and how it applies data protection principles. GDPR provides detailed instructions on how to create a privacy notice, placing an emphasis on making them easy to understand and accessible. ( Articles 12, 13, and 14 ) According… Read the full article

A specially designed form for data subjects to make subject access requests

Standard forms can make it easier both for you to recognise a subject access request and for the individual to include all the details you might need to locate the information they want. Recital 59 of the GDPR recommends that organisations ‘provide means for requests to be made electronically, especially where personal data are processed… Read the full article

Right of access art.15 GDPR

What is the right of access? The right of access, commonly referred to as subject access, gives individuals the right to obtain a copy of their personal data as well as other supplementary information. It helps individuals to understand how and why you are using their data, and check you are doing it lawfully. How… Read the full article

GDPR. You have six options to process your personal data legally. Which one do you choose?

GDPR brings six grounds on which you can process your legal data. One is consent, but it must be accompanied by information, can be withdrawn at any time, and in some cases may be invalid (for example in working relationships). At the same time, you are required to demonstrate at any time that you have… Read the full article

What is a Data Protection Impact Assesment? (DPIA)

Data Protection Impact Assessments are used to identify and protect against any data protection related risks arising from a new project. Under the new GDPR these impact assessments will be mandatory for any high-risk processing projects. Benefits Will allow you to make informed decisions about the acceptability of data protection risks and communicate it with… Read the full article

Payment services: Consumers to benefit from cheaper, safer and more innovative electronic payments

“European consumers will be able to reap the full benefits of paying online for goods and services, thanks to new rules that will it make it cheaper, easier and safer to make electronic payments. The revised Payment Services Directive (PSD2), which will apply as of 13 January 2018, aims to modernise Europe’s payment services to… Read the full article

Online shopping: EU remedies against defective digital products

The first EU rules that protect shoppers who face defective services or digital content If the issue can not be resolved, the price must be reduced or the contract concluded and the consumer’s payment refunded Digital content includes music, movies, applications, games and computer software People who buy or download music, apps, games, or cloud… Read the full article