Data Protection News Roundup – August

Welcome to August’s edition of our Data Protection monthly news roundup. Read on to find out what’s new in the world of data protection, as well as updates on all things iSTORM.

Projects 

July saw the continuation of several projects from the previous month, as well as a variety of new ones starting, including:

  • External and internal staff DSAR Gap carried out for a major international Publisher
  • Training around the Data and Usage Act
  • Client monthly and quarterly Data Protection meetings attended
  • Support  provided to a client with DSAR redactions and exemptions
  • Review of client documentation
  • Support with RoPA entries regarding specialist processes
  • Creation of training around “Reasonable Searches”
  • Creation of training around “AI High Risk Processes”
  • Support with Mobile App Cookies and Tracking technology

iSTORM are currently looking to the future for you, our clients, and for our continued growth. If you would like any more information on anything covered below, or you have a query, please reach out to us anytime!

EU Commission adopts guidelines under DSA

Mother and child with tabletThe EU Commission has adopted comprehensive non‑binding guidelines under Article 28 of the Digital Services Act (‘DSA’) to protect minors online, providing platforms with a benchmark framework to safeguard children’s privacy, safety, and wellbeing. The guidelines recommend default privacy settings for minors, age verification and adjustments to recommended systems to avoid harmful rabbit-hole content, restrictions on addictive design features, stronger moderation and user controls (block/mute, not being added to groups without consent), limits on downloading or screenshotting minors’ posts, and safeguards against exploitative commercial practices. UK entities, especially large or international online platform providers, may be expected to mirror many DSA standards in their practices

Ransomware attack disrupts school

A ransomware attack has disrupted computer systems at 11 schools in Shropshire, leaving pupils unable to submit coursework for weeks, a West Mercia Police and Crime Panel meeting has heard. Bagley Councillor, Benedict Jephcott said the incident, linked to a multi-academy trust, may have been worsened by enforced IT integration across sites. The cyberattack, which disabled essential systems including printers at a large secondary school, was among several high-impact cases handled by West Mercia Police’s cyber unit

 

Thoughts on training 

Have you fully considered the training needs of your company? Have you ensured that all staff have completed GDPR training during their induction and do you have a training plan to refresh this? It is vital that all staff, from Director to Customer Facing roles, are appropriately trained. Along side your GDPR training, have you considered specialist training for those that need it? Such as DSAR or breach training? We can support with any of your training needs, just drop us a message and we can get the ball rolling.

 

More from iSTORM?

We can offer services including:

  • GDPR/ Data Protection gap analysis and maturity reviews
  • Auditing
  • GDPR framework implementation support
  • Outsourced Data Protection Officer Services (DPO)
  • Data Protection Impact Assessments (Review & Completion)
  • Data Flow Mapping
  • Supplier Assurance Frameworks
  • Policy and procedure writing
  • Training and awareness (online and face to face)

We hope you have enjoyed this months data protection news roundup. For more information on any of the above, please email us at info@istormsolutions.co.uk or call +44 (0) 1789 608708

 

 

Verified by MonsterInsights