Thomas Yohannan's blog on the relationship between business and technology. Main areas of interest include cybersecurity, risk, law & finance.
Article excerpts from a forthcoming book – 99 Articles on the GDPR Summary: Yes through business-to-business agreements that state necessary steps and consequences for non-compliance to
Summary: No. By complying with the GDPR, UK organizations will be in compliance before and after Brexit. Brexit Day is on March 29, 2019 Brexit will
Third party compliance is a critical element for an organisation to be completely GDPR compliant Data Processing Addendums (DPA) is necessary to ensure compliance throughout
Summary: A focus on customer contact centers and GDPR can allow businesses to build strong bonds of trust and drive incremental revenue streams and ultimately
Summary: The 72-hour breach reporting requirement will require coordination between people, process & technology for success in the EU and abroad. Article 33 of the
Summary: Data shredding should be one of the key components of an organisation’s plan for remaining GDPR compliant. Companies looking to skip GDPR compliance can