Insights

Thursday, 15 May, is Global Accessibility Awareness Day (GAAD) and serves as a timely reminder that if your website, app, or platform isn’t usable by everyone, you are not just falling short on inclusion. You might be falling short on data protection compliance, too.  It is easy to think of digital accessibility requirements as a […]

Respecting Boundaries: How can you navigate Privacy Law Challenges and Data Access Limitations in Due Diligence?  In the world of due diligence, accurate, comprehensive information is paramount. Whether evaluating a potential business partner, assessing a company’s financial health, or uncovering potential legal risks, access to information is the foundation of informed decision-making. However, as privacy [...]

On World Password Day 2025, observed on May 1st, let’s reflect on one of our most basic yet crucial lines of defence.....the password protection. And let’s be honest, we’ve all been there… “Password123”, “pet's name” or even default credentials such as “admin.” These practices significantly weaken your security posture and expose your organisation's sensitive systems [...]

Employee health data is classified as special category data under the UK GDPR (Article 9) and sensitive personal data under the UAE PDPL, mishandling it can lead to legal, reputational, and financial consequences. With increasing scrutiny on data privacy, particularly concerning health conditions, organisations need to be vigilant when processing this sensitive information.  World Health […]

In March 2025, a major data breach shook Washington DC when a journalist was accidentally added to a secure Signal app messaging group. Signal, a platform celebrated for its encryption, was intended to facilitate private communications among high-ranking government officials. The group included Vice President JD Vance, Defence Secretary Pete Hegseth, and National Security Adviser […]

Building an Inclusive and Privacy-Respecting Workplace  Eid is a time of community, generosity, and reflection. Organisations should support employees in a way that aligns with both cultural awareness and data protection best practices.  As Eid 2025 approaches, organisations should reflect on whether they are demonstrating inclusivity without unnecessary data collection. Are you handling religious data […]

The Online Safety Act UK introduces a comprehensive legal framework to improve online safety and reduce harm for both children and adults. With increasing concerns over illegal content, harmful material, and misinformation, the Act mandates stricter compliance measures for online service providers, including social media platforms, search engines, video-sharing services, and cloud storage providers. Enforced [...]

Ransomware Attacks in the UK: Trends Since 2020 The UK Government defines Ransomware Attacks as “malicious software which infects a victim’s computer and demands a ransom from them to give them back access to their system, for their data to be restored, and often for the hackers not to publish the victim’s data on the [...]

Why is Data Protection in Finance non-negotiable? The recent £200,000 fine imposed by the ICO on ESL Consultancy Services Ltd for sending unlawful loan promotion texts is a wake-up call, highlighting the urgent attention for data protection in the finance industry. Nearly 38,000 complaints flooded in—proof that cutting corners on data protection isn’t just risky, [...]

Understanding Your Digital Footprint   Nowadays, nearly everyone carries a phone in their pocket. Imagine a phone as a mini-computer; most of them are capable of much more than merely sending text messages and making calls. They allow immediate access to the internet which means that we are sharing a tremendous amount of personal information […]