Leaving the EU: 6 Steps to Take

This checklist highlights six steps you can take now to start preparing for data protection compliance if the UK leaves the EU on 29 March 2019 without a deal. If you only operate within the UK, you may not need to do much to prepare for data protection after we leave the EU. The UK […]

Read more
Why Tracking Records Properly Matters

The health sector handles some of the most sensitive personal data, and patients have the right to expect that information will be looked after. According to the ICO, in last financial year there were more than 200 self-reported breaches of data being posted or faxed to the incorrect recipient in health sector. You should ensure […]

Read more
Do’s and Do Not’s for Data Security

DO Do use a strong password and change it if you think it may have been compromised Do report any loss or suspected loss of data Do be on your guard for fake e-mails or phone calls requesting confidential information – report anything suspicious to the IT Help Desk Do keep software up to date […]

Read more
Retention Policies

Creating a records retention policy The records retention policy dictates how long a record should be stored before it is destroyed. To develop an effective policy, your company must have a thorough understanding of the records that it stores across all formats, including paper documents, electronic files, telephone call records and social media.

Read more
Caldicott Principles – A Precursor to GDPR

The Caldicott Committee’s Report on the Review of Patient-Identifiable Information, usually referred to as the Caldicott Report was a review commissioned in 1997 by the Chief Medical Officer of England due to increasing worries concerning the use of patient information in the National Health Service (NHS) in England and Wales and the need to avoid […]

Read more
Lawfulness of Processing

Article 6 of the GDPR defines lawfulness of processing. It states that processing is only lawful if one of the following applies: The data subject has given consent to the processing of his or her personal data for one or more specific purposes; Processing is necessary for the performance of a contract to which the […]

Read more
About GDPR

The EU’s new data protection regulation is complex to understand and implement. GDPR365 reduces the risk of non-compliance by giving each company an intuitive cloud-based hub with customised, thoughtful workflows to simplify the compliance process by organising it into clear, simple and assignable tasks. In May 2016, the European Union (EU) passed a EU-wide data […]

Read more