Gravicus Blog:

Structured Thought


What Should Be in a GDPR Board Report

A daunting task for a lot of recently appointed DPOs is the necessity to communicate with the board. This is a new environment for many people.


What Is a DPIA (Data Protection Impact Assessment)?

The GDPR way to assess data protection The Data Protection Impact Assessment (DPIA) is a new requirement of the GDPR. It is a procedure designed to determine the risks involved in data processing,


Who is The Right Person to Be DPO in Your Business?

So, the released GDPR requires you to appoint a Data Protection Officer (DPO). Who do you pick? There are a couple of answers. The right answer will come down to how complicated your data processing


What is The Scope and Role of The DPO?

The GDPR is ‘creating jobs’. A likely 75,000 people worldwide will be appointed Data Protection Officer (DPO) during 2018. A commensurate number of organisations will be required to come to terms


The Six Core Principles of Data Privacy

INTRODUCTION: You may have arrived here because you're looking to understand more about how to acheive Data Privacy. To help you in your approach to complying with the latest privacy laws and


Data Privacy Principles

The six principles of data privacy To help achieve successful compliance, the GDPR highlights six key principles. Here we take a look at each principle and explain what each means.


Records for GDPR Compliance

What’s types of records must businesses keep to satisfy the GDPR? There is a difference between the types of records SMEs and larger firms must keep, but only if you process data occasionally.


The Key Approach to GDPR for SMEs

GDPR - It’s not just about data compliance for SMEs... A sound approach to data protection across SME businesses requires practical knowledge and experience to determine:


How To Prepare For The GDPR And What To Look Out For

GDPR preparation  An SME preparing for the GDPR may find the following suggestions helpful in working towards compliance:


GDPR - Data Records

Is there a difference between the types of data records SMEs & larger firms must keep for GDPR? There is, but only if you process data occasionally… Under the GDPR, SMEs (fewer than 250