A new role for the cybersecurity industry: the Business Information Security Officer (BISO)

Traditionally, those working in the cybersecurity industry have been technically savvy and laser-focused on tools and solutions. At a time when the whole enterprise – all its data and all its people – were safely housed in a corporate office and on the corporate network, this worked fine. However, that paradigm was starting to shift […]

Google adds new privacy controls in Android 11 launch

A number of privacy controls featured in Google’s release of Android 11 yesterday. Chief among these is the function to allow one-time permissions, or single-use access to the microphone, camera and location permissions, rather than allowing ongoing access after permission is initially granted. In addition, Android now includes “auto-reset” permissions for apps that have remained […]

New UK statutory code to protect children’s data comes into force

Organisations providing online services and products for children are now subject to a new statutory code, the UK’s data protection regulator, the Information Commissioner’s Office (ICO) announced today. The Age Appropriate Design Code, or Children’s Code, will particularly apply to organisations designing, developing or providing apps, social media platforms, online games, streaming services, connected toys […]

Time to review your GDPR legitimate interest assessment processes?

Businesses need to devote some time to keeping on top of overall compliance, particularly when it comes to lawful bases for processing. Guidance issued on lawful bases has sought to narrow the use of them in certain circumstances, for example the use of contractual obligation. This leaves many organisations limited realistic choices when deciding which […]

Privacy-By-Design: The Fundamentals of Data Protection

In May 2016, the protection of personal data became a fundamental right in the European Union. In safeguarding this right, the European Commission assesses and determines whether countries meet data protection standards. Privacy Shield was, in a sense, the aegis and seal of approval for companies in the United States to operate on European citizen […]