What to do in a data breach

The image shows a cartoon man in a white shirt and blue pants staring at a cartoon, oversized computer screen. The screen is showing red warning signs and 'danger' signs, with a red skull and crossbones coming out of an envelope, red crosses and warning signs above scribbled text pages, and pop up boxes with scribbled text warnings, all written in red. This is to demonstrate a data breach.

Failing to report a data breach could lead to a fine of £8.7million or 2%

Internet cookies and data protection – what do you need to know?

The image shows a grey laptop keyboard resting on a grey table, the screen of the laptop is only slightly visible in the corner of the image. On top of the keyboard, where the mousepad is, is a white bowl with a handful of small chocolate chip cookies in, demonstrating cookies and data protection.

In the UK, data protection law and internet cookies are closely linked because cookies can

The DUAA – how will this impact marketing for charities?

The DUAA will change marketing for charities. The image, to represent this, shows a keyboard with an overlay of sketches in white of icons, such as a lightbulb, a keyboard, a note pad, people holding hands and various small icons,

The Data (Use and Access) Act 2025 (“DUAA”, “the Act”) received Royal Assent on 19

Physical Security Reviews – why are they important to data protection?

Image shows a man in a black suit using a white ID card on a black scanner box to access a glass door. His image is visible in the reflection. Physical security reviews often consider access and egress of staff, visitors and contractors.

The physical security of an organisation acts as the first line of physical defence in

HOSPICES AND CHARITIES – get ahead with the new DUAA legislation

Image shows hand drawn sketches of hands holding a love heart, a flower and a present. Text states Legislation Update Webinar, the new DUAA for hospices and charities

The new Data (Use and Access) Act (DUAA) 2025 amendment is a positive development for

DUAA legislation receives Royal Assent

The new bill provides an update to data protection legislation and is expected to bring

Accessing Medical Records

A man in scrubs and a white long sleeved t-shirt holds a clipboard and reads medical records, which is spotlighted against a dark background.

When it’s ok to access patients’ medical files – and when it’s not.

What can we learn from recent ICO action on data protection?

A cartoon clipboard is hovering above a teal coloured background with the word 'PENALTY' across the top. Above this is a yellow shield with a dollar sign in the middle to represent a data protection fine.

Data protection in the UK is regulated by the Information Commissioner’s Office (ICO). The ICO

The dangers of using AI to manage subject access requests

Image has a black background and shows a human-shaped robot typing at a laptop, in a futuristic style. Above the laptop cloud with 'rain' portrayed by data streams leaning down towards the robot's fingers and laptop, representing AI completing subject access requests.

Subject Access Requests (SARs), an individual’s right of access under GDPR, are becoming much more

Outsourcing a Data Protection Officer – what are the benefits?

Image shows two hands clasping in a handshake, they are blue with lines and dots that make them look robotic. Above them is a shield representing the data protection officer role in a similar style, blue with lines and dots. They are all set against a dark blue background. Image is from Freepik.

Outsourcing data protection support can provide organisations and businesses with several benefits, including reduced operational

Data Protection Officer

Data Protection (GDPR) Overview

Data Protection Impact Assessment (DPIA)

Advanced Data Protection Officer

A.I. & Data Protection

Cyber Security & Data Protection

Data Protection for Investigators & Litigation Support Services

Records Management

The New Data Use and Access Bill

Subject Access Requests & Redaction (SAR Training)

Advanced Subject Access Request & Redaction of Information Training

Authorisation & Oversight for Senior Officers

A Practical Approach for Enforcement Officers

Caldicott Guardian Training

Advanced Caldicott Guardian

Senior Risk Owner Training

Advanced Senior Risk Owner Training

Safer Recruitment

Cyber Security & Data Protection

Information Asset Owner

Freedom of Information & Environmental Information Regulations

Board Briefings / Senior Staff Training

Marketing, Fundraising & Data Protection

CAF Aligned NHS DSPT Update

Data Protection Officer

Data Protection (GDPR) Overview

Data Protection Impact Assessment (DPIA)

Advanced Data Protection Officer

A.I. & Data Protection

Cyber Security & Data Protection

Data Protection for Investigators & Litigation Support Services

Records Management

The New Data Use and Access Bill

Subject Access Requests & Redaction (SAR Training)

Advanced Subject Access Request & Redaction of Information Training

Authorisation & Oversight for Senior Officers

A Practical Approach for Enforcement Officers

Caldicott Guardian Training

Advanced Caldicott Guardian

Senior Risk Owner Training

Advanced Senior Risk Owner Training

Safer Recruitment

Cyber Security & Data Protection

Information Asset Owner

Freedom of Information & Environmental Information Regulations

Board Briefings / Senior Staff Training

Marketing, Fundraising & Data Protection

CAF Aligned NHS DSPT Update

GDPR Audit

DSP Toolkit Audit & Support

Physical Security Review

Data Protection Impact Assessment

Policy Creation & Review

DPIA Assessment & Support

Freedom of Information Requests (FOI)

Incident & Breach Management

Subject Access Requests / Redaction

DSP Toolkit Guidance / Assurance

Managed Data Protection Service (DPO)

Managed Caldicott Guardian (CG)

Information Sharing