Category Archives: GDPR

@DanRaywood @InfosecurityMag interviewed me.

A couple of days after the #GDPR Press Briefing at City, University of London @DanRaywood @InfosecurityMag interviewed me. Check it out at: New on @InfosecurityMag talked to @datachainrisk about her PhD research into data privacy and the effect of breaches on people, as well as how #GDPR came along at the right time. @CityUniLondon https://t.co/lq29fQ6ans [...]

#GDPR Press Briefing in City, University of #London

On 17th April 2018, I was one of the speakers in the GDPR Press Briefing held at City, University of London (City). Checkout the hot off the press ‘City academics discuss GDPR at press briefing’ My written prepared talk is shared below. Privacy and the Individual – What difference will GDPR Make? Thanks John for [...]

Anonymisation & GDPR

Yesterday evening, 29th March 2018 I attended a BCS Law Specialist Group event – GDPR: Anonymisation,re-identification risk and GDPR profiling. The talk was presented by Dr. Amandine Jambert from the French Data Authority CNIL. The anonymisation slide is interesting. I asked whether the WP29 thinking (& their opinions) about the 3 properties are for the [...]

GDPR press briefing

I started using Shapr early this year out of curiosity to ‘test’ and to ‘play’ with the app. So far I’ve met up with a barrister and we had interesting exchanges, including the GDPR. Hard to imagine that I got interested in data protection and privacy way back in 2000. Back then I was a [...]

Article 29 WP revised guidelines on personal data breach notification

Latest (final?) revised ‘Guidelines on Personal data breach notification under Regulation 2016/679 (wp250rev.01) available here

UK Data Protection (HL Bill) & GDPR

This is an amendment of my blog done last Sunday (4th Feb 2018). The latest UK Data Protection Bill – HL Bill 153 (The Bill) is published here and the Explanatory Notes published here. It’s going to take more of my free Sunday afternoons to plough through the Bill, the Explanatory Notes and also this [...]

The UK Data Protection Bill [HL]

The published Bill- 218 pages. Will review the Bill soon…

data breach reporting – 5th, 6th, 7th & 8th busting myths from the ICO

What is ‘high risk’ in the context of data breach reporting or notification under the GDPR? According to the ICO’s website on breach notification: When do individuals have to be notified? Where a breach is likely to result in a high risk to the rights and freedoms of individuals, you must notify those concerned directly. [...]

UK Data Protection Bill

The Data Protection Bill (HL Bill 66) was introduced into the House of Lords on 13 September 2017. The published Bill. The press release from the Department for Digital, Culture, Media & Sport. The Bill implements the EU General Data Protection Regulation (GDPR) and will replace the Data Protection Act 1998.

4th busting myths from the ICO

Here’s the 4th myths from the ICO. Myth #4 GDPR is an unnecessary burden on organisations. Fact The new regime is an evolution in data protection, not a revolution. Read the ICO blog on GDPR is an evolution in data protection, not a burdensome revolution