Here is our round up of some of the news over the last week.

Here is the third part of an article we have been talking about for the past few weeks, part 3 looks at how organisations can comply with the GDPR.

This is an interesting one. Halifax may feel they have a legal obligation to comply with the law. The ICO states that organisations must “must have a valid lawful basis in order to process personal data”. Halifax talks about having legitimate purpose here not legitimate interest – no wonder people are confused.

The question we are asking ourselves is do the organisations named in this article not understand the regulation? By not providing individuals with information in a “concise, transparent, intelligible and easily accessible form, using clear and plain language” are they deliberately punishing individuals for daring to ask for information or are they merely being lazy?

With so many complaints being registered we have to ask if the regulators can realistically keep up with demand?

Deliveroo in the spotlight in this article which claims that UK customers have complained they have been charged for orders they haven’t made.  It does make us wonder who on earth would spend nearly £1,000 on takeaway food…with the exception perhaps of Donald Trump when hosting a college football team!

It seems that the GDPR didn’t have the anticipated effect on marketing within the travel industry.  Half of the travel marketing professionals who were polled said they hadn’t changed the amount of email marketing they have conducted and the new regulation actually brought more opportunity to reach consumers.

This article states that only 10% of SMEs are aware of the rights consumers have under the GDPR. SMEs have also stated that the GDPR was one of the biggest reasons for irritation in 2018.

See you next week.

There are of course thousands of other articles around cyber security and data privacy, why not get in touch if you would like us to comment on one you find particularly interesting.