Blog

I do not update this blog as frequently as I would like, you can find all of the latest news, updates and details of important developments by viewing our LinkedIn Group which is updated daily.

Part two – Erasing your data

Welcome back, we hope you had a lovely Christmas break and are back, refreshed and ready to tackle preparations for the General Data Protection Regulation (not long now… don’t forget… 25th of May!) In part one of this two-part series, we looked at data mapping and the benefits of overhauling your data right now to ensure you are prepared and ready for the GDPR… read more here. In this second part, we are going to have a look at how the guidelines to deleting data are changing, and the best practices for deleting data post GDPR. The main purpose of …

Read more →

Merry Christmas from the Griffin House Gang

  Merry Christmas  Can you believe another 12 months have flown by again!? We just wanted to send you our warmest festive greetings at this special time of the year. We are so fortunate to have so many incredible, interesting, passionate, intelligent and frankly awesome contacts within our network, and to each and every one of you, thank you for your custom, support and encouragement. We have been humbled by the generosity of spirit and kind words which we have received over the year. We wish you health, wealth (in whatever way you chose to measure that) and may 2018 …

Read more →

Part one – Mapping your data in preparation for the GDPR

The GDPR is but a mere few months away and you have a database full of prospects that you have collected over the years… can you still use it? Is it GDPR friendly? This is a hot question many businesses are asking… if you are one of them, then keep reading. Mapping your data You need to take a broad look at the data you hold, you need to map: • What personal data you hold • Where the data came from • Who you share that data with • What you currently do/intend to do with that data This …

Read more →

What is the difference between the Data Protection Bill and the GDPR?

If you’ve found this page because you’ve just managed to get your head around the GDPR and now there is all this new talk of a Data Protection Bill, then you are in the right place. If you’re looking for a quick overview of the new Data Protection Bill, how it could impact you and an overview of how it relates to the GDPR, then read on… What is the Data Protection Bill? Broadly speaking the Data Protection Bill, that was published on 14 September 2017, refreshes 4 main sections of data protection with an aim to keep the laws …

Read more →

Understanding Legitimate Interests v. Consent

Under the General Data Protection Regulation (GDPR) Data Controllers must have a lawful basis for processing any personal data.   Article 6(1) of the GDPR states that the following 6 are the recognised lawful grounds for data processing: Consent The individual has opted in and consented to having his or her personal information processed. Contractual Obligation It is necessary to process the personal data to fulfil your contract or precontractual obligations. Legal Obligation It is necessary to process the personal data to fulfil a legal obligation. Vital Interests It is necessary to process the personal data to protect the vital …

Read more →

New rules from GDPR will limit the use of fully automated data processing

The General Data Protection Regulation (GDPR), which all UK organisations will need to be compliant with by May 2018 has created a lot of uncertainty, not helped by the ambiguous nature of some of the legislation wording. In an attempt to shine light on these areas, regulators and official bodies are issuing clarification statements and guidance. One set of guidance concerns the rules on automated decision-making and profiling. Issued by the Article 29 Working Party (A29WP), which is the advisory group made up of representatives from all EU Member State data protection regulation authorities. It states how these guidelines will …

Read more →

Quiz – 6 data subject rights you don’t want to get wrong

If you hold, store or process personal information on individuals you should be aware that they have a number of rights that you need to ensure you fully understand and are actively acting in compliance with. Take our quiz to test your knowledge on the 6th principle of Data Protection… 1. Which of the following is a ‘data subject right’? a) To claim compensation for any data breaches that cause damage to them b) To request a copy of the data you hold on them c) To object to any processing that is likely to cause them ‘damage or distress’ …

Read more →

Electronic marketing campaigns and data compliance

Are you planning an email marketing campaign but not sure who you can and can’t communicate with? With the GDPR fast approaching (just 6 months to go!) here’s some guidance on hitting those targets and keeping within the data protection law, old and new. Whilst it is true that, at present, the rules for direct marketing aren’t quite as tight if you are contacting organisations rather than directly marketing to individuals. Whether you are B2C or B2B, you’ll have to comply with a number of regulations, not just the GDPR. So, for best practice, we recommend following the B2C guidelines. …

Read more →

SMEs it’s time to start the GDPR process…

GDPR (General Data Protection Regulation) is just around the corner and it’s time to start thinking about your compliance. GDPR applies to all UK businesses, including SMEs. To stay on the safe side and avoid costly fines you could face if you do not comply, one of the first steps you need to take is completing a data audit. On the 25th May 2018, there will be a fundamental change in data protection legislation, allowing customers to gain greater rights when it comes to the use of their personal information. A GDPR compliance audit is the starting point for your …

Read more →

Understanding the real and ‘fake news’ of GDPR and what you should be doing

The General Data Protection Regulation (GDPR) has been circling the news a lot lately, informing all businesses and their marketing departments about the new regime. GDPR is a regulation which was created in April of 2016, to be implemented by May of 2018. The aim of the regulation is to strengthen data protection within the European Union and give the power back to citizens, so individuals can control who uses their personal data. What is GDPR ‘fake news’? Along with the new publicity about GDPR, there has also been ‘fake news’ rumours spread about GDPR which doesn’t involve anything that …

Read more →
Next Page »