UK Privacy Consultants

22/03/2022

Just a thought, and a business one, as well as a private citizen concern, Kaspersky is a Russian owned Antivirus software house that is used widely through its business, personal and free versions of its solutions. Whilst the company is not Russian state-owned, there are growing concerns that the state may use it to spy on users or even infect users with some sort of virus (including Ransomware).

04/03/2022

Cookies are a big thing, and I don't mean the chocolate chip kind. On every webpage, we go to, there is the dreaded cookie banner. However, if you're a business, you could be falling foul of the Privacy and Electronic Communication Regulations (PECR) as well as the General Data Protection Regulations (GDPR) after certain binding decisions across the EU, that have repercussions for you. If in doubt, get in contact now

https://ukprivacyconsultant.co.uk

25/02/2022

Revised guidance from the ICO on the use of CCTV for business

The ICO has revised its guidance for businesses that use CCTV, Body Worn Video (BTV), Drones (UAVs), Facial Recognition Technology, Automatic Number Plate Recognition (ANPR) along with Dashcams and Smart Doorbell Cameras in use for Public and Private Sector Organisations. Make sure your business is compliant today, contact UK Privacy Consultants to see how we can help you!

https://ico.org.uk/for-organisations/guide-to-data-protection/key-dp-themes/guidance-on-video-surveillance/what-does-this-guidance-address/

30/10/2020

Are you processing personal data, even of just employee's? Then you know you have obligations under the GDPR and DPA 18, however, are you aware of the changes required for the 1 January 2021?

18/07/2020

European Courts of Justice ruling affecting the transfer of personal data to the US
So the world of the GDPR has received a substantial blow from the European Courts of Justice regarding the EU - US Privacy Shield, basically wiping this transfer method out, in a widely expected decision. But that's not all of it, this is stems from a complaint raised by an Austrian man (Shrems) around the way Facebook processes data of EU citizens on its Irish server and transferred it to the US, which is permitted by Standard Contractual Clauses (SCC) pursuant of Article 46 that Facebook has in place. The ruling doesn't go as far as to wipe out the SSC, but it has raised questions about the safeguards inferred by the SSC. Expect further guidance to follow from the EDPB and the ICO.

03/03/2020

So its been a manic start to 2020, winning another retained DPO as a Service for an education provider, absolutely non stop with course delivery, there seems to be a renewed vigor amongst industry to try and understand their obligations under the GDPR and DPA 18 especially around the requirements for BREXIT. And now we are about to sign up to a contract with a client in Saudi Arabia to bring their services up to GDPR Standard.

03/03/2020

Some fantastic news, through a contract of mine, I have brought a client to IT Governance to delivery a GDPR Gap Analysis as the first step to a much larger contract for a client in Saudi Arabia. Guess who is off to Saudi Arabia for a few weeks then. Watch out for photos!

07/02/2020

https://ukprivacyconsultants.co.uk/blog/f/data-protection-impact-assessment-dpia

Have you started, or even completed your DPIAs, not sure where to start? or even how to go about it. The first question is do we even need to do one!

07/02/2020

Citrix first disclosed this vulnerability in an Advisory on 17 December 2019. Initially, no patch was available although Citrix provided mitigation advice. On 19 January 2020, Citrix began to release fixes, which were available for all affected builds by 24 January. Links can be found below.

The NCSC recommends the following vendor best practice advice to mitigate vulnerabilities. In this case, the most important aspect is to install the latest updates as soon as practicable and to follow the vendor mitigation advice immediately.

Citrix have now updated the fixes for all affected ADC versions:

https://www.citrix.com/downloads/citrix-adc/

Fixes for all affected Gateway versions:
https://www.citrix.com/downloads/citrix-gateway/

Fixes for all affected SD-WAN models:
https://www.citrix.com/downloads/citrix-sd-wan/

Downloads Citrix Application Delivery Controller firmware, components, SDKs, service delivery appliances, service delivery platforms, evaluations and trial software

21/01/2020

An excellent day working with Cleveland Police offices in Middlesbrough carrying out Law Enforce Directive (DPA 18 Part 3) training for IT Governance, over twenty delegates from Cleveland Police, Durham Police, Northumbria Police and West Yorkshire. Need assistance with DPA 18 or DPA 18 Part 3, then please get in contact with me or IT Governance directly.

10/01/2020

Dixons Carphone has again been fined, this time for £500,000 for a massive data breach. It was only £500,000 because the beach happened prior to the introduction of the GDPR on May 18. This is on the back of a fine late last year of £400,000 for a similar beach.