Charities

Trust, Transparency and Data Protection

Charities rely on personal data more than ever before, whether they are processing a donation, running a fundraising event, or providing services. Supporters and service users must give their personal data to you; in some cases, such as prospect research, you will gather the data indirectly, form publicly-available sources. In all cases, trust is key. Two …

Trust, Transparency and Data ProtectionRead More »

Cookie D’oh!

With the news that the changes to ePrivacy law have now been delayed until 2020, now is a good time to evaluate whether your organisation’s practices are already in line with existing electronic privacy law. The ePrivacy Regulation is likely to strengthen the current provisions of PECR in similar ways to which GDPR strengthened previous …

Cookie D’oh!Read More »

What would you say? 20 questions from the ICO

What would you say? 20 questions from the ICO The findings from the ICO’s latest Information Risk reviews highlight the many and varied areas that data protection risk touches upon. We turned the findings into the 20 key questions you should ask yourself about data protection at your organisations. Do you have a clear Data …

What would you say? 20 questions from the ICORead More »

Data Protection Act 2018- What Does It Mean To You?

In all the hyperbole and misinformation surrounding the General Data Protection Regulation (GDPR) in recent weeks, it may have been easy to miss the UK passing its own updated data protection legislation – the imaginatively titled Data Protection Act 2018 (the Act), which helpfully also came into force on 25th May. This replaces the Data Protection Act 1998, which has …

Data Protection Act 2018- What Does It Mean To You?Read More »

Facebook and ‘CA’ – not Cambridge Analytica, but Custom Audiences

Unless you have been living under a rock for the past few weeks, you will have noticed that Facebook’s business practices have been coming under the microscope of public scrutiny. It’s been well-known for a long time among the data protection and marketing communities that Facebook operates by harvesting, generating and acquiring large amounts of …

Facebook and ‘CA’ – not Cambridge Analytica, but Custom AudiencesRead More »

A Wealth of Data – Using Public Information

The latest investigation by the Daily Mail into the use of publicly-available personal information has hit the headlines. This time, the activities of university alumni and development teams is under the spotlight. Sadly, it’s the same mixture of issues first aired into the conduct of charities back in late 2016. The article has the same, …

A Wealth of Data – Using Public InformationRead More »

Taking the ‘Con’ out of ‘Consent’

Taking the ‘Con’ out of ‘Consent’ In many ways, the GDPR is not very different to the Data Protection Act. This is true for the requirement to justify which of the six lawful “basis for processing” you are relying on to legitimise the processing (activity) in question. Some have been, and remain clear: in life …

Taking the ‘Con’ out of ‘Consent’Read More »

Changes to the ICO Subject Access Code of Practice

The right of an individual to be told whether an organisation is processing their personal data and be given access to that data (“subject access”) is a significant one in data protection law, and was the most common type of concern reported to the ICO in 2016/17. Following the resolution of the legal cases dealing …

Changes to the ICO Subject Access Code of PracticeRead More »

Scroll to Top