Whether you are a Data Controller or a Data Processor you have responsibilities under the General Data Protection Regulation (GDPR). A controller determines the purposes and means of processing personal data, whereas a processor is responsible for processing personal data on behalf of a controller and you are required to maintain records of personal data and processing activities.
ICO
Data Protection law and GDPR
On 25 May 2018 most processing of personal data by organisations will have to comply with the General Data Protection Regulation (GDPR). Preparing for the general data protection regulation – 12 steps that you should take now
Data Protection and Subject Access Requests
An increasing number of subject access requests have been made under the Data Protection Act 1998.
Subject access requests are used as tactical ploys as a way of putting pressure on the other side to disclose documents that would not otherwise be disclosable in litigation. Several cases have been
