Sign Up

What is 8 + 4?

Have an account? Sign In Now

Sign In

What is 8 + 4?

Forgot Password?

Don't have account, Sign Up Here

Forgot Password

Lost your password? Please enter your email address. You will receive a link and will create a new password via email.

What is 8 + 4?

Have an account? Sign In Now

Please type your username.

Please type your E-Mail.

Please choose an appropriate title for the question so it can be answered easily.
Please choose the appropriate section so the question can be searched easily.

Type the description thoroughly and in details.

What is 8 + 4?

Sign InSign Up

Watercooler by DPOrganizer

Watercooler by DPOrganizer Logo Watercooler by DPOrganizer Logo

Watercooler by DPOrganizer Navigation

Search
Ask A Question

Mobile menu

Close
Ask a Question
  • Home
  • Categories
    • GDPR
    • Privacy Management
    • Professional Development
    • Software tips and tricks
    • Polls
  • Help
  • About Watercooler

Dave_Wylie

Bronze contributor
6Followers
10Questions
Home/ Dave_Wylie/Answers
  • About
  • Questions
  • Polls
  • Answers
  1. Asked: September 9, 2021In: Software tips and tricks

    How do you get your training content?

    Dave_Wylie

    Dave_Wylie

    • United Kingdom (UK)
    • 10 Questions
    • 28 Answers
    • 0 Best Answers
    • 26 Points
    View Profile
    Dave_Wylie Bronze contributor
    Added an answer on June 28, 2022 at 1:05 pm

    Bobs Business have a great set of e-Learning modules. DPOrganizer stuff is good too and you can customise and do your own courses in there. Chris Roberts of Cybata is good at F2F training and custom course and games

    Bobs Business have a great set of e-Learning modules.
    DPOrganizer stuff is good too and you can customise and do your own courses in there.
    Chris Roberts of Cybata is good at F2F training and custom course and games

    See less
    • 0
    • Share
      Share
      • Share on Facebook
      • Share on Twitter
      • Share on LinkedIn
  2. Asked: May 8, 2022In: GDPR

    PII v PI

    Dave_Wylie

    Dave_Wylie

    • United Kingdom (UK)
    • 10 Questions
    • 28 Answers
    • 0 Best Answers
    • 26 Points
    View Profile
    Dave_Wylie Bronze contributor
    Added an answer on June 28, 2022 at 12:54 pm

    In simple terms, personal data is an EU term and is far wider in scope due to the direct and indirect aspects of identification, than PII which is a US term. Personal Data means: "any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural persoRead more

    In simple terms, personal data is an EU term and is far wider in scope due to the direct and indirect aspects of identification, than PII which is a US term.

    Personal Data means: “any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

    PII is described by Department of Homeland security as per this: https://www.dhs.gov/privacy-training/what-personally-identifiable-information

    On the face of it it seems to becoming more aligned with the EU may of thinking …

    See less
    • 0
    • Share
      Share
      • Share on Facebook
      • Share on Twitter
      • Share on LinkedIn
  3. Asked: June 10, 2022In: GDPR

    Cookies consent and contact form consent

    Dave_Wylie

    Dave_Wylie

    • United Kingdom (UK)
    • 10 Questions
    • 28 Answers
    • 0 Best Answers
    • 26 Points
    View Profile
    Dave_Wylie Bronze contributor
    Added an answer on June 28, 2022 at 12:37 pm

    In my experience, there is a split in what you are asking for here , and indeed how the market solution vendors approach this area of consent . 1. Website Cookie consent and management.(All pretty much miss all the other consent requirements of trackers such as scripts, tracking pixels, font librariRead more

    In my experience, there is a split in what you are asking for here , and indeed how the market solution vendors approach this area of consent .
    1. Website Cookie consent and management.(All pretty much miss all the other consent requirements of trackers such as scripts, tracking pixels, font libraries etc etc)
    2. Point In Time Notice and User Consent collection and management and other omni “Consent ” points across business (email, social media, phone, door entry, apps etc etc)

    There is one solution in my opinion is the most powerful to handle the omni channel consent and that is PrivacyCheq / ConsentCheq by Roy Smith and his team but unfortunately it does not do the cookie bit 🙂

    In terms of the cookie side of things, there are a few solutions to have a look at:
    Cookiebot
    Cookiescan
    CookiePro
    Didomi
    Agnostic.io
    Signatu
    Baycloud
    dataskydd : https://webbkoll.dataskydd.net/

    Hope that helps a little
    Dave

    See less
    • 0
    • Share
      Share
      • Share on Facebook
      • Share on Twitter
      • Share on LinkedIn
  4. Asked: May 17, 2022In: GDPR, Privacy Management, Software tips and tricks

    I am curious – has anyone found dashboard type software to build a privacy programme like OneTrust/CyberComply etc for smaller organisations, has anyone found that they’re really are worth the cost?

    Dave_Wylie

    Dave_Wylie

    • United Kingdom (UK)
    • 10 Questions
    • 28 Answers
    • 0 Best Answers
    • 26 Points
    View Profile
    Dave_Wylie Bronze contributor
    Added an answer on June 28, 2022 at 12:20 pm

    For me the reporting dashboard that come with ANY of the solutions on the market are a secondary feature that enhances the primary reason for buying them in the first place; data discovery, mapping, ROPA, DSAR's, Incidents and breach management, Privacy office / Data Protection programme / project tRead more

    For me the reporting dashboard that come with ANY of the solutions on the market are a secondary feature that enhances the primary reason for buying them in the first place; data discovery, mapping, ROPA, DSAR’s, Incidents and breach management, Privacy office / Data Protection programme / project task management etc etc

    In that regard the cost is zero as it is a by product of other functionality you are paying for.

    That being said you could always use other reporting platforms such as Power BI and expose via the platforms API’s and pull stuff out. I know of DPOrganizer clients that do exactly this to enhance the reporting aspects, especially in large “federated” type of instances and indeed other platforms offer the same potential.

    Smaller companies are often Excel based for mapping so a logical use case, before they to the Paper to SaaS migration route, would be to natively leverage the Excel Reporting features or indeed use Power BI ..

    See less
    • 1
    • Share
      Share
      • Share on Facebook
      • Share on Twitter
      • Share on LinkedIn
  5. Asked: January 17, 2022In: GDPR

    Cold Prospecting

    Dave_Wylie

    Dave_Wylie

    • United Kingdom (UK)
    • 10 Questions
    • 28 Answers
    • 0 Best Answers
    • 26 Points
    View Profile
    Dave_Wylie Bronze contributor
    Added an answer on February 10, 2022 at 11:06 am

    I would strongly suggest reading this: https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/exemptions/

    I would strongly suggest reading this:

    https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/exemptions/

    See less
    • 0
    • Share
      Share
      • Share on Facebook
      • Share on Twitter
      • Share on LinkedIn
  6. Asked: February 8, 2022In: GDPR

    GDPR Compliance

    Dave_Wylie

    Dave_Wylie

    • United Kingdom (UK)
    • 10 Questions
    • 28 Answers
    • 0 Best Answers
    • 26 Points
    View Profile
    Dave_Wylie Bronze contributor
    Added an answer on February 10, 2022 at 11:03 am

    As a follow up to the above also look at the new shortly to become available UK international Data Transfer Agreement and Guidance ... https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/international-data-transfer-agreement-and-guidanceRead more

    As a follow up to the above also look at the new shortly to become available UK international Data Transfer Agreement and Guidance …

    https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/international-data-transfer-agreement-and-guidance/

    “On 2 February 2022, the Secretary of State laid before Parliament the international data transfer agreement (IDTA), the international data transfer addendum to the European Commission’s standard contractual clauses for international data transfers (Addendum) and a document setting out transitional provisions. This final step follows the consultation the ICO ran in 2021. The documents are issued under Section 119A of the Data Protection Act 2018.

    If no objections are raised, they come into force on 21 March 2022. Exporters will be able to use the IDTA or the Addendum as a transfer tool to comply with Article 46 of the UK GDPR when making restricted transfers.”

    See less
    • 0
    • Share
      Share
      • Share on Facebook
      • Share on Twitter
      • Share on LinkedIn
  7. Asked: February 8, 2022In: GDPR

    GDPR Compliance

    Dave_Wylie

    Dave_Wylie

    • United Kingdom (UK)
    • 10 Questions
    • 28 Answers
    • 0 Best Answers
    • 26 Points
    View Profile
    Dave_Wylie Bronze contributor
    Added an answer on February 9, 2022 at 9:08 am

    Pretty much most of what you need to demonstrate EU GDPR compliance; with a few exceptions !

    Pretty much most of what you need to demonstrate EU GDPR compliance; with a few exceptions !

    See less
    • 0
    • Share
      Share
      • Share on Facebook
      • Share on Twitter
      • Share on LinkedIn
  8. Asked: March 24, 2021In: GDPR

    Nature of Relationship

    Dave_Wylie

    Dave_Wylie

    • United Kingdom (UK)
    • 10 Questions
    • 28 Answers
    • 0 Best Answers
    • 26 Points
    View Profile
    Dave_Wylie Bronze contributor
    Added an answer on March 24, 2021 at 1:14 pm

    This is definitely an area of expertise of @chrrob who specialises in the GDPR implications of sporting institutions and their supply chains !

    This is definitely an area of expertise of Chris Roberts who specialises in the GDPR implications of sporting institutions and their supply chains !

    See less
    • 0
    • Share
      Share
      • Share on Facebook
      • Share on Twitter
      • Share on LinkedIn
  9. Asked: March 24, 2021In: GDPR

    Notification of changes to data processors

    Dave_Wylie

    Dave_Wylie

    • United Kingdom (UK)
    • 10 Questions
    • 28 Answers
    • 0 Best Answers
    • 26 Points
    View Profile
    Dave_Wylie Bronze contributor
    Added an answer on March 24, 2021 at 1:12 pm

    The time line should be at least as long as it would be required of the controller to be able to undertake and interact with the processor about the new sub-processor of the controller; like reviewing the VDD they have done and any or all of the DPIA's / LIA's etc as part of that exercise so they caRead more

    The time line should be at least as long as it would be required of the controller to be able to undertake and interact with the processor about the new sub-processor of the controller; like reviewing the VDD they have done and any or all of the DPIA’s / LIA’s etc as part of that exercise so they can amend their own records and make the decision if they are happy with the risk change.

    I have seen time periods in Controller to Processor agreements that vary from a minimum of 30 days to 90 day for changes in processing supply chain scope within the DSA (Data Sharing Agreements)

    It also depends how much the Processor (Controller in their own right) has their own house in order with respect to Vendor due diligence and notification to parties that they process on behalf of .. but as you mention they should be taking a risk based approach to the activities of the new processor … more lead time for more risk and sensitive personal data sets .. that are in scope.

    Hope that helps.

    See less
    • 1
    • Share
      Share
      • Share on Facebook
      • Share on Twitter
      • Share on LinkedIn
  10. Asked: March 19, 2021In: GDPR, Privacy Management

    Under a FOI request? Please can someone show me in the legislation where the “less than 5” rule applies?

    Dave_Wylie

    Dave_Wylie

    • United Kingdom (UK)
    • 10 Questions
    • 28 Answers
    • 0 Best Answers
    • 26 Points
    View Profile
    Dave_Wylie Bronze contributor
    Added an answer on March 19, 2021 at 4:34 pm

    I would suggest pitching this question at Tim Turner of 2040training who is very knowledgeable on all aspects of FOI. Sadly i am not much of an expert in this area. Sorry.

    I would suggest pitching this question at Tim Turner of 2040training who is very knowledgeable on all aspects of FOI.

    Sadly i am not much of an expert in this area. Sorry.

    See less
    • 0
    • Share
      Share
      • Share on Facebook
      • Share on Twitter
      • Share on LinkedIn
1 2 3

Sidebar

Ask A Question

Trending contributors

Smurf333

Smurf333

  • 11 Answers
Bronze contributor
Dave_Wylie

Dave_Wylie

  • 28 Answers
Bronze contributor
CRodica

CRodica

  • 6 Answers
Rising star contributor
Andrea

Andrea

  • 15 Answers
Bronze contributor
Atis

Atis

  • 4 Answers

Recent questions

  • Ian G

    Revoke.com - new third party portal for customer right requests

    • 0 Answers
  • Anonymous

    Instagram!!

    • 0 Answers
  • Olga

    DPO in EU and UK

    • 1 Answer
  • Smurf333

    DBS scenario with HR retaining excessive information for longer than ...

    • 0 Answers
  • CRodica

    Parties role towards employees data for administrative purposes

    • 0 Answers

Explore

  • Home
  • Categories
    • GDPR
    • Privacy Management
    • Professional Development
    • Software tips and tricks
    • Polls
  • Help
  • About Watercooler

Footer

Your privacy

  • Cookie notice
  • Privacy notice

Terms and policy

  • Acceptable Use Policy
  • Terms of Use

© 2021 DPOrganizer. All Rights Reserved. With Love by DPOrganizer.