November 14, 2017
Your website is one of the few parts of your business affected by the GDPR which is public and therefore visible for anyone to see. This includes not only the Information Commissioner’s Office (ICO) itself, but also your customers and competitors, any one of whom could report you to the ICO for non-compliance, and the ICO is obliged to act on complaints they receive.
Easy to get wrong and for a breach to be shown
Because the GDPR’s requirements for privacy policies (Articles 12 to 22) are both general and prescriptive, they are very challenging to satisfy. Moreover, failure to meet a single requirement is an instant breach of the GDPR and, unlike many of the GDPR’s other requirements, can easily and instantly be proven.
What it says about your business
The Information Commissioner's Office has found HMRC guilty of violating GDPR for collecting biometric voiceprints of over five million taxpayers without their express consent and has directed HMRC to "delete …
Earlier this year, while conducting investigations into the harvesting of personal information of millions of UK citizens by data analytics firms without obtaining their consent, the Information Commissioner's Office (ICO) …