The GDPR and Personal Data Breach Reporting

The Article 29 Data Protection Working Party (‘A29WP’) recently issued guidelines on personal data breach reporting under the General Data Protection Regulation (‘GDPR’). The GDPR obliges data controllers to report personal data breaches to data protection authorities within 72 hours unless the breach is ‘unlikely to result in a risk to the rights and freedoms’ […]

The GDPR: what’s all the fuss?

The General Data Protection Regulation, or ‘GDPR’, has been created to provide stronger protection of personal data than that contained in the EU Directive 95/46/EC. The Directive, dating from 1995, introduced a framework that is now inadequate given the enormous changes in digital information and the way in which we use technology. The GDPR will […]