Third and fourth parties and data security requirements under the GDPR

Why it is essential for organisations to go beyond contractual protections to ensure appropriate data processing risk management in relation to vendors and their subcontractors. Managing risk around the processing of an organisation’s personal data by third party vendors and their subcontractors is complex and resource-intensive, and, in the effort to minimise costs, is not […]

Blockchain and the GDPR: irreconcilable foes or a partnership with great potential?

At first glance, blockchain and the General Data Protection Regulation (GDPR) may seem like they would be wholly unrelated, complete strangers.  But as applications of blockchain expand into the mainstream – payments, healthcare and security, to name a few areas – there are increasing concerns about the (lack of) compatibility between applications of blockchain technology […]