Blog
November Privacy Roundup
If you’ve ever thought ‘we’ll slightly delay the newsletter so we can cover this new bit of news, then we’ll close it off’, don’t do that… the torrent never stops!…
Blog Downloads
DPDI #3 is here
They say third time’s a charm. Well, the UK’s GDPR Reform Bill, the DPDI, is back. On 7 November King Charles gave the King’s Speech, setting out the government’s agenda…
Blog
DPDI 2023: SRIs and DPOs
There’s a lot of discussion about the effect on DPOs of the senior responsible individual (SRI) under the UK’s GDPR reform bill, DPDI 23. We’ll give you our view in…
Blog
Privacy fines outweigh Finance fines
This article was first published in Thomson Reuters Regulatory Intelligence on 6 November 2023 and is the personal view of the author, Robert Baugh. Subscribers link. Free trial link. A potentially…
Blog
Keepabl's 6th Birthday!
It’s Keepabl’s 6th birthday! I founded Keepabl on 2 November 2017. It’s been a crazy 6 years with ups and downs – and ups – I couldn’t have predicted. In…
Blog
Keepabl Sponsors Privacy Space November 2023
We are excited to announce that Keepabl will again be present at this year’s second Privacy Space event in November. Not only that, we’re very proud to continue our 100%…
Blog
UK-US Data Bridge opens to traffic
Privacy Shield, the adequacy decision under EU GDPR for transfers to the USA, fell on 16 July 2020. On 10 July 2023, three years later, the EC announced the EU-US…
Blog
October Privacy Roundup
We’ve lots of practical news for you again this month on the consistent themes of children, biometrics, AI, transfers and enforcement with some news on processing agreements (the other DPA).…
Blog
Biometric data in financial services: existing law, deep fakes, and the UK ICO's draft guidance
This article was first published in Thomson Reuters Regulatory Intelligence on 20 September 2023 and are the personal views of the author, Robert Baugh. Subscribers link. Free trial link. Biometrics have…
Blog
The Launch of Languages in Keepabl
In a world where we’re more connected than ever, we understand the importance of effective communication, especially for groups and international businesses. Keepabl is committed to making our Privacy Management…
Blog
September Privacy Roundup
We’ve had a bumper month of announcements and action. As always, we’ve curated the news that has the most practical impact on operationalising Privacy at your organisation. We’ve practical updates…
Blog
August Privacy Roundup
You may have noticed we skipped our July newsletter covering June, apologies, so here’s a summer bumper edition! As always, so much to talk about with the new Privacy triumvirate…
Blog
DSRs or Individuals' Rights: A Backgrounder
Data Subject Rights or DSRs have been around for decades, but GDPR massively reinforced and extended them when it took effect in 2018 – five years ago now. Laws around the…
Blog
EU GDPR Adequacy Decision for EU-USA DPF
10 July 2023: EC adopts adequacy decision for the EU-US Data Privacy Framework! Here’s the announcement and here’s the 137-page DPF adequacy decision. The decision concludes that the United States…
Blog
Meta loses again: this time at the CJEU
Much of the 4 July 2023 decision by the European Union’s highest court is worth digging into. Stick with us for a longer read. We’ll start with the key points…
Blog
Privacy Kitchen Passes 4,000 Subscribers
The Keepabl team is so proud to announce that Privacy Kitchen® has surged past a significant milestone, with over 4,000 subscribers! Thank you! As we celebrate this incredible achievement,…
Blog
Meta Ireland's €1.2bn GDPR fine takes them to €2.5bn in total
Facebook (OK, Meta) just lost out big time with a fine of €1.2bn and orders to suspend transfers of personal data on EEA users to the USA within 5 months…
Blog
Keepabl at the Global RegTech Summit 2023
We’re one of the very few solutions named to the global RegTech100 for 3 years running so we were delighted to be selected to demo our Privacy Management Software at…
Blog
UK ICO fines TikTok £12.7 million for GDPR breaches on children's data
Children’s data increasingly in focus: UK ICO fines TikTok £12.7 million for GDPR breaches This article was first published in Thomson Reuters Regulatory Intelligence on 12 April 2023. Subscribers link.…
Blog
Top 10 LinkedIn Hashtags for Privacy and Security
Which is the better hashtag to use on LinkedIn: #breach or #databreach #privacy or #gdpr? Before you read on, take a moment to think of your answer. Surprisingly #databreach has…
Blog
Know your Sub-Processors from your Joint Controllers with powerful Entities Registers
Spot check! Within 30 seconds, can you show us a list of all the entities involved in your organisation’s personal data processing, plus have them separated out by role, and…
Blog
EU LIBE Committee's draft motion to reject the EU-US DPF Adequacy Decision
Well, with previous regulators and commentators coming down on either side, and on the fence, over the DPF, no-one said the passage of the EC’s draft adequacy decision would be…
Blog
CJEU on DPOs, Job Protection & Conflict
We’ve always believed that the Data Protection Officer (or DPO) is a very misunderstood role. It’s why we created these 3 great Privacy Kitchen videos [YouTube cookies and Privacy Policy…
Blog
Keepabl adds Azure AD to our SSO stable
We’re delighted to announce that Microsoft’s Azure AD joins Keepabl’s stable of supported Identity Providers for provisioning and managing your users in Keepabl through Single Sign-On with your favourite IdP!…
Blog
The 2022 Year in Privacy Hurdles
It’s back! The Year in Privacy Hurdles burst onto the scene at the end of 2021, bringing together the big action in Data Protection in the UK and EEA…
Blog
The UK ICO Accountability Framework - 15 FAQs with the UK ICO
We were delighted to be joined in Privacy Kitchen by Chris Taylor, the UK ICO’s Head of Assurance whose team set up the ICO Sandbox, manages the ICO’s guidance and…
Blog
Keepabl Sponsors Privacy Space November 2022
Privacy Space has burst onto the live event scene for data protection practitioners and – let’s face it – Privacy geeks. It was created as “an initiative that aims to…
Blog
Halloween Scare Alert: Excel Nightmare on Privacy Street
SCARE ALERT! This Halloween, we’re aware that many are still using Excel to manage Privacy. Now, we love Excel and you can upload and download Excel in Keepabl, but there’s…
Blog News & Awards
The UK ICO Accountability Framework
How do you benchmark your Privacy compliance? If you’re covered by GDPR, even if you’re not in the UK, there’s a good chance you’re thinking of the popular, gold-standard benchmark…
Blog Downloads
UK GDPR Brexit Reforms & Accountability
The UK government claims that the reforms in the draft UK Data Protection and Digital Information Bill, published by the government on 18 July 2022, will reduce ‘the burdens on…
Blog
Privacy Policy or Privacy Notice?
Let’s answer the question up front: nowhere in UK or EU data protection law is it written that you have to call any document a Privacy Policy or Privacy Notice.…
Blog Downloads News & Awards Privacy Kitchen
Get Keepabl's FREE online GDPR and Privacy Training Pack
Four years after application, GDPR is embedded in business as usual but it’s still seen as complex and difficult for those managing Privacy within organisations – Cisco says 90% of…
Blog Privacy Kitchen
UK GDPR Reforms – a practical perspective
Let’s take a look at the key areas in the government’s response to the DMCS consultation and – if they get through into law – what changes, challenges or opportunities…
Blog
Privacy and Environmental, Social and Corporate Governance (ESG)
What is ESG? ESG, or Environmental, Social and Corporate Governance, is the evaluation of a company’s commitment to improving environmental and social factors and the governance part, reporting on them…
Blog News & Awards
Never miss a trick with Keepabl's new Tasks module
Managing Privacy can be tough, and for those who’ve been given GDPR as part of their daily work – someone in IT, Ops or Compliance 90% of the time as…
Blog
What is the General Data Protection Regulation (GDPR)?
Why GDPR? The GDPR applied from 25 May 2018 to harmonise data protection law across the EU. It replaced the old 1995 EU Data Protection Directive – which each member…
Blog News & Awards Privacy Kitchen
People need GDPR training
Why Privacy Kitchen? Through all our market interactions since our launch in 2017, we kept seeing 3 very big issues for Privacy compliance. #1 Most people dealing with GDPR for…
Blog
Privacy Shield 2.0: the Trans-Atlantic Data Privacy Framework
EP Committee publishes draft resolution rejecting Draft Adequacy Decision on DPF, 14 February 2023 Well, with previous regulators and commentators coming down on either side, and on the fence, over…
Blog
What is Schrems II?
The Schrems II decision came out nearly 2 years ago, on 16 July 2020. Given the enormous data flows from the EEA and UK to the USA, and many unanswered…
Blog
Keepabl just made Privacy even more joyful
We’re all super excited at Keepabl – Thursday 3 March 2022 saw our biggest product release day ever, and the culmination of two key projects that have taken the best…
Blog News & Awards Privacy Kitchen
Is Google Analytics Illegal in the UK and EU?
Update September 2022 There have been various other decisions from EU regulators since we wrote the blog below – all holding Google Analytics in the form reviewed was illegal under…
Blog
VCs: how Keepabl's Privacy Management SaaS supports your portcos in the unicorn race
Venture Capital investors invest a finite sum of money into a finite number of businesses and aim for one portfolio company to ‘return the fund‘. It’s just the way the…
Blog Downloads Privacy Kitchen
7 GDPR Traps for Groups and how to avoid them
With any group of companies – or any other group structure – there are 7 GDPR Traps we see in the market. The good news is, they’re all easily solvable.…
Blog News & Awards
Keepabl's Schrems II-compliant datacenter
We’re super excited here at Keepabl with our shiny new datacenter, solving for the Schrems II decision. And it comes with our shiny new front end, which we’ll be writing…
Blog Privacy Kitchen
A strong finish for 2021
Aware of the stress that comes with working during a global pandemic, this year we’ve tried extra-hard to make things easier on the GDPR front in the way of product…
Blog
Announcing SSO for Keepabl!
Keepabl now supports Single Sign-On (SSO), one of the pillars of Identity and Access Management (IAM) and best practice in securing your SaaS solutions. The 3 Fundamentals of IAM…
Blog Privacy Kitchen
Article 6 and the 6 Legal Bases of GDPR
Article 6 GDPR contains 6 legal bases – easy to remember! Which is good as they’re super important: if you can’t rely on one of them for your processing, it…
Blog News & Awards
Keepabl is named to the RegTech100 2022
The fifth annual RegTech100 was announced today by specialist research firm RegTech Analyst. Regarding Keepabl’s inclusion, RegTech 100’s Director of Research, Mariyan Dimitrov says: ‘We’re delighted to welcome Keepabl into…
Blog Case Studies Downloads News & Awards
Times Higher Education chooses Keepabl to manage GDPR
Times Higher Education is the world-famous provider of insights on all things Higher Education, with almost 5 decades of experience. Their data and benchmarking tools, and their consultation offerings, are…
Blog News & Awards
UK Consultation on Data Protection Reforms 2021
On 10 September 2021, the UK’s Department for Digital, Culture, Media & Sport (DCMS) launched Data: a new direction, a consultation seeking responses on a wide range of proposed changes…
Blog News & Awards Privacy Kitchen
ISO 27701 – is it worth it?
We’ll look at 7 Decision Factors, both pros and cons, to help you make that decision, and explore a really interesting alternative. Let’s be positive and start with the 2…
Blog
Businesses admit to unethical data processing
A recent KPMG study, surveying 2,000 adults and 250 business leaders in the USA, reveals fascinating – and worrying – insights into how corporate data practices and consumer expectations are shifting. …
Blog News & Awards Privacy Kitchen
What are the 7 principles of GDPR?
Breach of the Principles can lead to the highest fine under GDPR, namely the higher of 4% of global turnover or €20m under EU GDPR, £17.5m under UK GDPR. That’s…
Blog Case Studies News & Awards
St Giles Trust chooses Keepabl to manage GDPR obligations
St Giles Trust empowers people who are not getting the help they need, using their expertise and real-life past experiences. Between 2019 and 2020, the charity helped over 20,000 people,…
Blog Case Studies News & Awards
Leading Privacy and Security Consultant accelerates client’s GDPR compliance with Keepabl’s Privacy Management Software
David Clarke, a very experienced UK-based Privacy and Security consultant working with public and private organisations of all sizes, was suitably impressed when he recently used Keepabl’s Privacy Management software…
Blog News & Awards
Personal data sharing and Financial Services: lessons from the NHS, Lisbon-Moscow and the Experian enforcement notice
In November 2020, the Financial Conduct Authority (FCA) warned firms to be responsible when handling client data, noting that: “Before transferring clients’ personal data, firms should consider whether this is…
Blog News & Awards
Keepabl launches on Finastra's Fusion Fabric.cloud!
Our award-winning Privacy SaaS is now available for purchase on Finastra’s FusionStore, allowing a wider range of Financial Services firms to benefit from GDPR compliance. Finastra’s Fusion Store allows Finastra’s…
Blog
Time for a healthy kick up the GDPRse!
Now is the perfect time to get your GDPR-house in order. Why? Well, read on! The UK’s opening back up 19 July 2021 is set to be the day…
Blog Downloads
Secuvy AI joins the Privacy Stack!
We’re delighted that Secuvy, the leading Data Privacy and Security platform with integrations from over 200 Cloud Applications, Databases and Fileshares has joined the Privacy Stack! Here’s why Data Discovery…
Blog
UK receives Adequacy Decision for EU GDPR!
Let the bells ring out, it’s Adequacy Day! 28 June 2021 and the European Commission formally adopted two adequacy decisions in favour of the UK – one under EU GDPR…
Blog
The Spice Girls & the 2021 ‘NHS Big Data Grab’ - UPDATED 220821
On 12 May 2021, the NHS announced the ‘General Practice Data for Planning and Research (GPDPR)’, daily collection of GP data to support vital health and care planning and research…
Blog
GDPR is 3 years old today!
Well, that was a year! The thing with GDPR, is that it’s always so intense that you have to live in the moment, and it’s too easy to forget what…
Blog
GDPR & finance: Security, progress & 10 steps to compliance
Original posted on FinTECHTalents on 6 April 2021 The following is the first in a six part part series on GDPR & Financial Services from Keepabl. Keepabl will review how…
Blog
GDPR's global business impact, Brexit and our founder's story
Watch the video on Privacy Kitchen! We’re very grateful to Copenhagen Business School for the opportunity to share this excellent interview by their Associate Professor, Pedro Telles, for CBS’s students. …
Blog
Have your say on our Data Subject Rights (DSR) solution!
We’re about to build our DSR solution, integrated within our award-winning SaaS solution – and we want to hear from you first! Take our 9-question survey to become a ‘Roadmapper’…
Blog
Article 30 Records vs RoPA vs Asset Register vs Data Map
Article 30 Records vs RoPA vs Asset Register vs Data Map Does it matter what you call it? Oh heck, yes. I mean, was Boba Fett in Star Trek? Article…
Blog
'I need the Article 30 Records please'
‘I need the Article 30 Records please’ If you believe some surveys, that request is a walk in the park for most organisations, given reported compliance with GDPR. We don’t…
Blog Downloads
The Business Case for Privacy & Privacy ROI
We know you need to check the business case for any new solution in the best of times, but it’s critical now. So we’ve collated tons of useful material here…
Blog
Sending errors worse for breach than cyber
The UK ICO’s detailed report on the 2,629 personal data breaches reported to it in Q1 2020 shows a startling fact: more breaches happened from mis-sending emails, faxes and mail…
Blog
GDPR's 2nd anniversary
GDPR’s just turned 2 – here’s our overview 25 May 2020 went past with a whisper compared to 25 May 2018. GDPR entered the ‘terrible two’s at a time when…
Blog Privacy Kitchen
Announcing Privacy Kitchen!
We’re delighted to announce the launch of Privacy Kitchen, your FREE video help on GDPR and all things Privacy. If you’re looking after GDPR compliance for your organisation, I bet…
Blog
Google USA takes control
Google’s recently announced that – due to Brexit – it’s changing data controller for UK users from Google Ireland to Google USA. This has led to some alarmist reporting. What’s…
Blog Downloads
ISO 27701 & GDPR: Adoption Issues Ahead
Many organisations and advisers are looking for a clear, achievable way to demonstrate GDPR compliance status to the board and customers. Even better if it shows them the way to…
Blog
DPOs between rock & hard place
TL;DR A recent survey highlights the ethical dilemmas that arise from being an in-house lawyer. Robert Baugh, our lawyer-founder, believes these same dilemmas are being felt, and will continue to…
Blog
The postman always delivers - but shouldn't repurpose data
Trick question: is it legal for a national postal service to guess your political opinions from what they know about you, such as age and address, and sell that data…
Blog
Keepabl's 2nd birthday!
Keepabl turns 2 on 2nd November 2019! Amazing to think we’ll be 2 years old tomorrow – the years have disappeared almost as quickly as this cake! It’s a great time…
Blog
GDPR + SaaS = Happy Days
Our experience is that, after the last 18 months working on spreadsheets to manage GDPR, many organisations are now looking for SaaS to bring its many benefits to ongoing GDPR…
Blog Downloads
Compliance SaaS for MSPs – TubbTalk #56
All MSPs wanted to know about GDPR but were afraid (or just didn’t want) to ask! Join MSP thought leader and IT services consultant Richard Tubb, as he interviews our…
Blog
How MSPs can compete with Free
CompTIA’s unconference session, CompTIA UK Community meetup, Bristol, June 2019. The ‘unconference’ session is always a highlight of CompTIA Community meetups, and Bristol 2019 was no different. So much great…
Blog
EU Expert Group delivers '1st Year Report' on GDPR
Teacher’s report is in! Out of 10, how’s the first year of GDPR really gone? [This article originally appeared in Lexology on 10 June 2019] The European Commission created an…
Blog
Introducing Keepabl's PRIVACY STACK
The Privacy Stack Here at Keepabl, we often say that the Privacy sector, kickstarted into life by GDPR in 2018, is 30 years behind Security as a practice and industry. …
Blog
A very blue Monday for Google
On 21 January 2019, the French Data Protection Authority (CNIL) hit Google LLC with an incredible fine of €50m. Implications of the decision for online account management and marketing will…
Blog
Why are we doing the BPM Index?
Why we’re doing the BPM Index. We created the BPM Index, and we’re maintaining and publishing the BPM Index, because we exist to help organisations (public and private) with their compliance. …
Blog
An avalanche of DPIA lists
22 – yes 22 – lists of when a data protection impact assessment, or ‘DPIA’, is and isn’t required have been reviewed by the European Data Protection Board (the ‘Board’). The…
Blog
UK ICO update on breach reporting
In a very welcome speech on 12 September 2018 to the CBI Cyber Security: Business Insight Conference, James Dipple-Johnstone (ICO Deputy Commissioner, Operations) summarised the UK ICO’s approach to security under GDPR and…
Blog
GDPR compliance checks under way?
The GDPR only passed on 25 May 2018 and the Dutch DPA is now checking to see if businesses are complying with one of the most fundamental ongoing requirements: maintaining…
Blog
CLOUDs form over key data flows
The enormous – and enormously valuable – flow of personal data from the European Economic Area to the world’s largest economy, the USA, is again at existential risk. This alone…
Blog
GDPR Benchmark Report
According to new findings from a Cordium and AmberGate survey, more than half of investment firms are unlikely to be ready for the European Union’s new General Data Protection Regulation…
Blog
Cordium & Keepabl: Benchmark GDPR regulatory readiness
Our latest Cordium Insights webinar outlines: best practices for assessing data processing, storage, and protection policies, tips for identifying and remediating control gaps and weakness and on how to develop…
Blog
GDPR Reality Check
Robert Baugh of Keepabl is a leading expert on GDPR and a consultant to companies where data protection and the management of confidential and sensitive data is paramount. Only two…
KEEPABL is the trade mark of Keepabl Ltd | Company #: 11043685 | Registered office 86-90 Paul Street, London EC2A 4NE | VAT #: 281 5220 22
Keepabl is a regulatory compliance service provided for information only, not legal advice. Always consult your lawyer on legal matters.
Web Design & Development by MazeSpace Studios Ltd