Blog
GDPR's global business impact, Brexit and our founder's story
Watch the video on Privacy Kitchen! We’re very grateful to Copenhagen Business School for the opportunity to share this excellent interview by their Associate Professor, Pedro Telles, for CBS’s students. …
Blog
Have your say on our Data Subject Rights (DSR) solution!
We’re about to build our DSR solution, integrated within our award-winning SaaS solution – and we want to hear from you first! Take our 9-question survey to become a ‘Roadmapper’…
Blog
Article 30 Records vs RoPA vs Asset Register vs Data Map
Article 30 Records vs RoPA vs Asset Register vs Data Map Does it matter what you call it? Oh heck, yes. I mean, was Boba Fett in Star Trek? Article…
Blog
'I need the Article 30 Records please'
‘I need the Article 30 Records please’ If you believe some surveys, that request is a walk in the park for most organisations, given reported compliance with GDPR. We don’t…
Blog
Sending errors worse for breach than cyber
The UK ICO’s detailed report on the 2,629 personal data breaches reported to it in Q1 2020 shows a startling fact: more breaches happened from mis-sending emails, faxes and mail…
Blog
GDPR's 2nd anniversary
GDPR’s just turned 2 – here’s our overview 25 May 2020 went past with a whisper compared to 25 May 2018. GDPR entered the ‘terrible two’s at a time when…
Blog , Privacy Kitchen
Announcing Privacy Kitchen!
We’re delighted to announce the launch of Privacy Kitchen, your FREE video help on GDPR and all things Privacy. If you’re looking after GDPR compliance for your organisation, I bet…
Blog
Google USA takes control
Google’s recently announced that – due to Brexit – it’s changing data controller for UK users from Google Ireland to Google USA. This has led to some alarmist reporting. What’s…
Blog , Downloads
ISO 27701 & GDPR: Adoption Issues Ahead
Many organisations and advisers are looking for a clear, achievable way to demonstrate GDPR compliance status to the board and customers. Even better if it shows them the way to…
Blog
DPOs between rock & hard place
TL;DR A recent survey highlights the ethical dilemmas that arise from being an in-house lawyer. Robert Baugh, our lawyer-founder, believes these same dilemmas are being felt, and will continue to…
Blog
The postman always delivers - but shouldn't repurpose data
Trick question: is it legal for a national postal service to guess your political opinions from what they know about you, such as age and address, and sell that data…
Blog
Keepabl's 2nd birthday!
Keepabl turns 2 on 2nd November 2019! Amazing to think we’ll be 2 years old tomorrow – the years have disappeared almost as quickly as this cake! It’s a great time…
Blog
GDPR + SaaS = Happy Days
Our experience is that, after the last 18 months working on spreadsheets to manage GDPR, many organisations are now looking for SaaS to bring its many benefits to ongoing GDPR…
Blog , Downloads
Compliance SaaS for MSPs – TubbTalk #56
All MSPs wanted to know about GDPR but were afraid (or just didn’t want) to ask! Join MSP thought leader and IT services consultant Richard Tubb, as he interviews our…
Blog
How MSPs can compete with Free
CompTIA’s unconference session, CompTIA UK Community meetup, Bristol, June 2019. The ‘unconference’ session is always a highlight of CompTIA Community meetups, and Bristol 2019 was no different. So much great…
Blog
EU Expert Group delivers '1st Year Report' on GDPR
Teacher’s report is in! Out of 10, how’s the first year of GDPR really gone? [This article originally appeared in Lexology on 10 June 2019] The European Commission created an…
Blog
Introducing Keepabl's PRIVACY STACK
The Privacy Stack Here at Keepabl, we often say that the Privacy sector, kickstarted into life by GDPR in 2018, is 30 years behind Security as a practice and industry. …
Blog
A very blue Monday for Google
On 21 January 2019, the French Data Protection Authority (CNIL) hit Google LLC with an incredible fine of €50m. Implications of the decision for online account management and marketing will…
Blog
Why are we doing the BPM Index?
Why we’re doing the BPM Index. We created the BPM Index, and we’re maintaining and publishing the BPM Index, because we exist to help organisations (public and private) with their compliance. …
Blog
An avalanche of DPIA lists
22 – yes 22 – lists of when a data protection impact assessment, or ‘DPIA’, is and isn’t required have been reviewed by the European Data Protection Board (the ‘Board’). The…
Blog
UK ICO update on breach reporting
In a very welcome speech on 12 September 2018 to the CBI Cyber Security: Business Insight Conference, James Dipple-Johnstone (ICO Deputy Commissioner, Operations) summarised the UK ICO’s approach to security under GDPR and…
Blog
GDPR compliance checks under way?
The GDPR only passed on 25 May 2018 and the Dutch DPA is now checking to see if businesses are complying with one of the most fundamental ongoing requirements: maintaining…
Blog
CLOUDs form over key data flows
The enormous – and enormously valuable – flow of personal data from the European Economic Area to the world’s largest economy, the USA, is again at existential risk. This alone…
Blog
GDPR Benchmark Report
According to new findings from a Cordium and AmberGate survey, more than half of investment firms are unlikely to be ready for the European Union’s new General Data Protection Regulation…
