The ICO has published a blog post to ‘clarify how the fees that data controllers have to pay to the ICO are changing’; however the post provided no actual figures for the new fees. Currently organisations who process personal data ‘notify’…
With phishing becoming popular within the news, it’s important that you and your organisation understand the many different types and how to prevent them from occurring. What is “Phishing?” Phishing a fraudulent act, in which the purpose is to steal…
What is ISO 20400:2017? ISO 20400 delivers guidance on integrating sustainability within procurement. The intention of this standard is for organisations to support their supply chains in acting more dependably and sustainably. Who is ISO 20400:2017 for? ISO 20400 is…
Running a business is tough, particularly when you are a small business in a world of corporate giants. We recently spoke to Jo Shaer, founder and director of Lollipop Local, who helps small businesses to make the most of their…
As the Digital Minister, Matt Hancock announces the expected Data Protection Bill which sets out the UK’s approach to the European General Data Protection Regulations (GDPR), a separate consultation is published on plans to force organisations to demonstrate they have…
Roles referencing SHEQ in the title or description have developed in recent years and are formed of 3 distinct disciplines. 1. Safety and Health An established compliance area, occupational health and safety management is governed by several pieces of UK…
Companies are often confused about what is required of them when it comes to providing human resource for Health and Safety. While small & medium sized enterprises might assign Health and Safety duties in addition to an existing job role…
Introduction The General Data Protection Regulations represents the most significant Data Protection reform in nearly 20 years, and we were interested in how organisations were preparing for such a significant change. We invited our existing customers, visitors to our website…
Even the best-organised Information Security Management Systems can suffer unfortunate non-conformances when certification auditors are on site. Here are five of the trickiest ISO 27001:2013 controls – in my opinion: 1 Tailgating Many organisations share a building or main entrance…
