Life with GDPR

Welcome to a special series on Life with GDPR. Over the next five episodes, Tom Fox and Alyssa DeSimone, a legal/compliance & risk management expert, with an extensive background in HR,  will discuss the complex topic of a Compliance Roadmap for ADS/ADMT. In this second episode, Tom Fox and Alyssa DeSimone review the opt-in and opt-out requirements introduced in the recent updates to the California Consumer Privacy Act (CCPA). They discuss what opting in and out entails, the concept of anti-retaliation in this context, and how disparate impact analysis can help regulators assess compliance. Additionally, they explore the importance of clear communication and training for HR departments on the use of AI in hiring, as well as the role of vendors in ensuring compliance. The episode wraps up with a discussion on the ambiguous term 'significant decision making' and its potential for litigation. Key highlights: Understanding Opt-In and Opt-Out Requirements Anti-Retaliation Measures Disparate Impact Analysis Applicant Rights and Training Vendor Collaboration and Compliance Significant Decision Making Resources: Connect with Tom Fox LinkedIn Connect with Alyssa DeSimone LinkedIn Website Life with GDPR was recently honored as a Top Data Security Podcast Learn more about your ad choices. Visit megaphone.fm/adchoices

Welcome to a special series on Life with GDPR. Over the next five episodes, Tom Fox and Alyssa DeSimone, a legal/compliance & risk management expert with an extensive background in HR, will discuss the complex topic of a Compliance Roadmap for ADS/ADMT. In this first episode, we break down the essentials of ADS/ADMT, focusing on who is covered, the nuances of jurisdiction, and the broader business implications of evolving employment laws. ADS is an automated decision system, and ADMT is an automated decision-making technology. Whether you are an HR professional, compliance professional, or legal eagle, this discussion will help you navigate the complexities of compliance in a changing legal landscape. Key highlights: What is ADS/ADMT? Applies to 5+ employees (including part-time/out-of-state). Coverage limits for out-of-state conduct. Jurisdiction can reach beyond California. Risk mitigation tips for businesses. Resources: Connect with Tom Fox LinkedIn Connect with Alyssa DeSimone LinkedIn Website Life with GDPR was recently honored as a Top Data Security Podcast Learn more about your ad choices. Visit megaphone.fm/adchoices

Jonathan Armstrong remains on assignment. Today, Tom Fox visits with fellow Texan Jim LaRoe, CEO of Symphion, to discuss data privacy, data protection, and compliance related to printer security in one of the most interesting podcasts Tom has done in some time. Jim provides insight into how 20-30% of network endpoints are printers, and alarmingly, 99% of these are unprotected. Printers, despite being integral to business functions, are typically left vulnerable, making them prime targets for sophisticated phishing and cyber-attacks. Jim shares his journey from a trial lawyer to founding Symphion in 1999 and explains Symphion’s groundbreaking work in developing comprehensive security software for printers. Jim highlights the importance of a culture of compliance in managing endpoint security and the multifaceted challenges that come with securing printers.  He emphasizes the collaborative effort needed among GRC compliance teams, IT, and supply chain departments to manage printer security effectively, and offers actionable steps for businesses to mitigate these risks. Learn more about your ad choices. Visit megaphone.fm/adchoices

Jonathan Armstrong remains on assignment. Today, Tom visits with Adam Goslin, founder of Total Compliance Tracking, to discuss his journey from IT development and management to becoming a leader in the security and compliance sector. Adam shares his professional background, the challenges he faced with achieving PCI compliance, and the insights that led him to create a system to streamline compliance management. He details how his company, TCT, helps organizations efficiently manage various certifications and compliance standards. Adam also discusses the unique, direct marketing approach TCT employs and shares the philosophy behind providing accessible compliance resources. This conversation offers valuable insights into the importance of pragmatic, user-friendly compliance solutions. Key takeaways: Adam Goslin’s Professional Journey Founding Total Compliance Tracking Marketing Strategy and Philosophy Future of TCT and Industry Insights Resources: Connect with Tom Fox LinkedIn Connect with Adam Goslin LinkedIn Connect with Total Compliance Tracking Website LinkedIn Life with GDPR was recently honored as a Top Data Security Podcast.   Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox takes a solo turn as Jonathan Armstrong is on assignment. Today, Tom visits with Inge Zwick, Executive Director, Head of Europe, and ESG Lead at Emapta Global, a global outsourcing company. They discuss the company’s operations, with a particular focus on managing GDPR compliance within the outsourcing framework. They also discuss common misconceptions about outsourcing under the GDPR, risk assessment processes, handling data subject access requests, and integrating compliance into business operations. Zwick also shares insights into how EMAPTA collaborates with clients to ensure compliance and offers advice to business leaders on future-proofing their outsourcing strategies in light of GDPR requirements. Additionally, the discussion explores the integration of ESG initiatives within the company’s operations. Key takeaways: Outsourcing and GDPR Compliance Risk Assessment and Data Security Subject Access Requests (SAR) Outsourcing Contracts and GDPR Obligations Integrating Compliance into Operations Resources: Connect with Tom Fox LinkedIn Connect with Inge Zwick LinkedIn Connect with Emapta Global Website LinkedIn Life with GDPR was recently honored as a Top Data Security Podcast.   Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned cybersecurity experts, co-host the award-winning Life with GDPR. This episode explores the complex intersection of AI and recruitment, focusing on compliance challenges under GDPR and potential risks. Jonathan highlights that AI is often more prevalent in recruitment processes than many compliance officers realize, often through third-party vendors. He discusses the regulatory landscape in the UK and EU, sharing insights on recent cases related to automated decision-making and the transparency required for such systems. Jonathan offers a seven-point plan for organizations that use or are considering using AI in recruitment, covering provider selection, due diligence, transparency obligations, and mechanisms for handling data subject requests. The conversation underscores the need for proactive engagement between data protection officers, compliance teams, and recruiters to ensure that AI tools are used responsibly and transparently. Key takeaways: AI in Recruitment: An Overview Legal and Ethical Concerns Transparency and Fairness in AI Decisions Practical Steps for Companies Future of AI in Recruitment Resources: Connect with Tom Fox LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn PunterSouthall Life with GDPR was recently honored as a Top Data Security Podcast. Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. In this episode, they discuss Cookie Compliance Under GDPR. Their discussion highlights the increasing enforcement actions surrounding website cookies, emphasizing that this is a data protection issue and a broader compliance challenge. Specific case studies, such as the Dutch regulator’s fine against Pool Blue and fines in other EU countries, illustrate the significant financial penalties companies can face for non-compliance. Jonathan outlines an eight-point plan to help organizations ensure their cookie practices are current, including regular checks, proper configuration of cookie banners, and transparency about data retention periods. The episode also touches on the role of third-party cookies, potential litigation, and regulatory actions. Compliance with cookie regulations is becoming increasingly important, with groups like NOYB driving many complaints and regulatory bodies across Europe ramping up enforcement efforts. Listeners are encouraged to assess their cookie practices and make necessary adjustments to avoid fines and maintain compliance. Key takeaways: The Rise of Cookie Enforcement Global Fines and Consequences Practical Compliance Tips Challenges with Cookie Banners Understanding Your Own Cookies Guidelines for Cookie Retention Resources: Connect with Tom Fox LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn PunterSouthall Life with GDPR was recently honored as a Top Data Security Podcast. Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. This episode discusses the complex topic of liability for the Chief Compliance Officer (CCO) and Chief Information Security Officer (CISO). Tom and Jonathan begin by examining notable cases like Joe Sullivan, the former CISO at Uber, who faced prosecution for mishandling a ransomware threat. They also cover other significant cases like Carlos Abarca from TSB Bank and Tim Brown from SolarWinds, highlighting the increasing trend towards personal liability among high-ranking compliance and security officers. Jonathan points out that prosecutors and legislators focus more on individual accountability, driven by the belief that this approach will encourage others to adhere to standards more rigorously. They explore the implications of misleading LinkedIn profiles and the importance of thorough due diligence when taking on new roles. The episode provides practical advice for C-suite executives to protect themselves, including negotiating indemnity clauses and ensuring accurate job descriptions. Key takeaways: Chief Compliance Officer Liability Overview Case Studies: Joe Sullivan and Uber, Carlos Barker and TSB Bank and Tim Brown and SolarWinds Legislation and Trends in Personal Liability SEC Formula for CCO Liability Resources: Connect with Tom Fox LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn PunterSouthall Life with GDPR was recently honored as a Top Data Security Podcast  Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned expert in cyber security, co-host the award-winning Life with GDPR. In this episode, they discuss a pressing deadline for compliance officers: the February 2nd enforcement of the EU AI Act’s prohibitions on unacceptable AI risk. Tom and Jonathan look at the phased implementation of this complex legislation, detailing the obligations of businesses using AI in their EU operations. Jonathan emphasizes the importance of identifying ‘shadow AI’ within organizations, from HR recruitment tools to consumer applications, and the substantial penalties for non-compliance, which can reach up to $35 million or 7% of global annual revenue. They also cover a practical five-step plan to help companies move towards compliance, involving board awareness, an AI inventory, assessment of AI tools, contract reviews, and transparency measures. Tune in to understand the nuances of this legislation and how to prepare your organization before the rapidly approaching deadline. Key takeaways: Understanding the EU AI Act Prohibited AI Applications Corporate and Personal Liability Steps to Compliance Resources: Connect with Tom Fox LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn PunterSouthall Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned expert in cyber security, co-host the award-winning Life with GDPR. This episode delves into the UK’s Failure to Prevent Fraud guidance. The podcast spans the initial implications and conflicts these new provisions present, especially in the context of GDPR and compliance with bribery investigations. Jonathan explains the concept of ‘failure to prevent fraud,’ drawing parallels with the 2010 UK Bribery Act, and outlines six key principles organizations must adhere to to demonstrate compliance. Additionally, the episode delves into specific steps compliance professionals should take before the new provisions come into force by July 2025, including gap analysis, policy updating, training, and more. Key takeaways: Failure to Prevent Bribery and Fraud New Legislation and Its Implications Reasonable Procedures Under the Failure to Prevent Fraud Act Comparing Fraud and Bribery Compliance Steps for Compliance Professionals Resources: Connect with Tom Fox LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn PunterSouthall Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned expert in cyber security, co-host the award-winning Life with GDPR. In this episode, we delve into the complex provisions of the new EU AI Act, exploring its global effects and extraterritorial implications similar to the GDPR. Tom, Jonathan and a few friends discuss the multifaceted regulatory framework, which combines elements from EU antitrust law, GDPR, and EU medical device rules, and highlight the need for transparency and compliance for AI developers and corporations using AI. We also address enforcement timelines, the importance of an AI inventory, and practical steps for compliance officers to ensure adherence to the new regulations. Key Takeaways: Overview of the EU AI Act Enforcement and Compliance Corporate Responsibilities and Compliance Strategies Enforcement Mechanisms and Penalties Practical Steps for Organizations Challenges and Governance Resources: Connect with Tom Fox Instagram Facebook YouTube Twitter LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, a renowned expert in cybersecurity, co-host the award-winning “Life with GDPR.” Jonathan has returned from his hiatus, and in this episode, we examine the UK election results and their potential impact on compliance. The recent UK election has significant implications for compliance, particularly concerning the dynamics between the UK’s Serious Fraud Office (SFO) and the new government. Jonathan Armstrong, an expert on bribery enforcement, anticipates that the new administration under Keir Starmer will focus on high-profile issues like the PPE scandal while maintaining robust enforcement actions, including dawn raids. Armstrong and Fox bring deep insights into the potential compliance landscape, shaped by their extensive backgrounds: Armstrong’s expertise in corruption investigations and Fox’s experience with the criminal justice system. Fox highlights the impact of the new Prime Minister’s legal background in bolstering enforcement efforts and contemplates the future governance of AI under this administration. Both experts foresee a political shift, with Armstrong expecting the Conservative Party to lean rightward yet occupy the political center, and Fox emphasizing the continuity and experience the new government brings to compliance and enforcement issues.   Key Takeaways: Heightened Bribery Enforcement Under New Government Russian Sanctions and Uighur Import Regulations Data Protection Bill Changes Post-UK Election UK’s New Administration Faces Challenges and Changes Center-Ground Positioning in UK Politics Resources: Connect with Tom Fox Instagram Facebook YouTube Twitter LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned expert in cyber security, co-host the award-winning Life with GDPR. Jonathan is on a short hiatus and in this episode, we have a special guest, Karen Moore who discusses the EU’s Corporate Sustainability-Due Diligence Directive. Karen Moore is a well-versed professional in the area of impact assessments and due diligence, with a particular focus on human rights and environmental issues to prevent and address potential harm. Her perspective, shaped by her extensive experience, is that impact assessments and due diligence are key indicators of a corporation’s commitment to preserving the environment and upholding human rights. Moore emphasizes the importance of these processes not only within a company’s own activities, but also within those of its suppliers and indirect suppliers. She stresses the need for a robust due diligence process, including tracking progress, publishing annual statements, implementing complaints procedures, and involving all employees. Additionally, she highlights the challenges of managing these processes, such as complex questionnaires for third-party suppliers and the need for streamlined assessments. She believes in a proactive approach to corporate responsibility, going beyond regulatory requirements to foster sustainable practices and ethical decision-making.  Key Takeaways: Ethical and Sustainable Business Practices Compliance Guidelines Ethical Evaluation for Data Privacy Compliance in the US Ethical Data Handling for GDPR Compliance Ethical Business Practices in Supply Chains  Resources: Connect with Tom Fox Instagram Facebook YouTube Twitter LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn Connect with Karen Moore LinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. Today we consider the NIS2 Directive, which is the EU-wide legislation on cybersecurity. It provides legal measures to boost the overall level of cybersecurity in the EU. Cybersecurity regulations are reshaping the landscape, demanding swift action and accountability from organizations and individuals. The NIS2 Directive tightens reporting deadlines, putting pressure on organizations to comply with cybersecurity incidents. This means that organizations need to be prepared to act quickly and efficiently in the event of a cyber incident to avoid penalties and maintain trust with their stakeholders. Management faces increased personal liability under the NIS 2 Directive, highlighting the need for proactive cybersecurity measures. This emphasizes the importance of implementing strong cybersecurity protocols and staying ahead of potential threats to protect both the organization and individual leaders from legal and financial repercussions. Regulatory bodies advocate for a shift towards prevention in cybersecurity to combat rising cyber threats. This shift in focus underscores the importance of investing in proactive cybersecurity measures rather than simply reacting to incidents after they occur, ultimately leading to a more secure and resilient digital environment. Join Tom Fox and Jonathan Armstrong as they delve deeper into this topic on this episode of the Life with GDPR podcast. Key Takeaways: NIS Two Directive: Stricter Reporting and Jurisdiction NIS Two Directive: Management’s Cybersecurity Liability Operational Resilience: Proactive Cybersecurity Measures Resources: Connect with Tom Fox Instagram Facebook YouTube Twitter LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. In this episode, they look at the continued fallout from the Solar Winds data breach. In the complex world of data protection, the General Data Protection Regulation (GDPR) has placed a spotlight on the importance of transparency, honesty, and corporate responsibility. Experts Tom Fox and Jonathan Armstrong bring their unique perspectives to this topic, shaped by their extensive experience in compliance and data protection. Fox emphasizes the potential legal consequences for corporate leaders who fail to disclose vulnerabilities or engage in dishonest practices, while Armstrong highlights the increasing pressure on individuals and corporations to disclose data breaches, with regulators focusing more on individual liability. Both stress the importance of transparency, the potential for litigation, and the role of whistleblowers. Join Fox and Armstrong as they delve deeper into these issues on this episode of the Life with GDPR podcast. Key Takeaways: The Importance of Truthfulness in GDPR The Importance of Transparency in Data Breaches Legal risks in data breaches and cybersecurity The Impact of Budget Constraints on Vulnerability Fixes  Resources: For more information on the issues raised in this podcast, check out the Cordery Compliance News Section. For more information on Cordery Compliance, go to their website here. Also, check out the GDPR Navigator, one of the top resources for GDPR Compliance by clicking here. Check out the Cordery Data Breach Academy here. Connect with Tom Fox ●      LinkedIn Connect with Jonathan Armstrong ●      Twitter ●      LinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. In this episode, they look at a breach of a big law. In the wake of a recent spearphishing attack and data breach at a UK law firm, the legal community is abuzz with discussions on the responsibility of lawyers to prevent such attacks. Tom Fox, known for his critical perspective on big law firms, highlights the mistakes made by the firm in question, emphasizing the increasing concern over cyber-attacks targeting law firms and the need for timely reporting to regulatory authorities. Jonathan Armstrong, on the other hand, underscores the importance of proactive cybersecurity measures and timely reporting, commending the firm for taking immediate action but criticizing the delay in reporting the breach. Both Fox and Armstrong bring their unique perspectives shaped by their experiences in the field. Join them on this episode of the Life with GDPR podcast as they delve deeper into this topic. Key Takeaways: A spearphishing Attack Leads to Data Breach Cybersecurity Measures for Law Firms The Power of Dedicated Data Protection Training   Resources: For more information on the issues raised in this podcast, check out the Cordery Compliance News Section. For more information on Cordery Compliance, go to their website here. Also, check out the GDPR Navigator, one of the top resources for GDPR compliance, by clicking here. Check out the Cordery Data Breach Academy here. Connect with Tom Fox ●      LinkedIn Connect with Jonathan Armstrong ●      Twitter ●      LinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. In this episode, they look at litigation over a data breach against Singtel Opus in Australia and the fallout from an investigation report. The recent data breach at Intel Optus, affecting 1.2 million individuals, has brought to light the critical role of strategic communication in managing cybersecurity breaches. Tom and Jonathan Armstrong, offer their unique perspectives on this issue. Fox emphasizes the inevitability of cybersecurity breaches and the need for a comprehensive strategy, including effective communication, to manage them. He warns against the potential consequences of mishandling communication during a breach, such as jeopardizing insurance coverage. Armstrong highlights the complexity of maintaining privilege in a global corporate structure and the importance of careful language to avoid invalidating insurance or causing unnecessary speculation. He also underscores the need for a holistic approach to cybersecurity, encompassing prevention, detection, remediation, and crisis communication. Join Tom Fox and Jonathan Armstrong as they delve deeper into this topic in the latest Life with GDPR podcast episode.  Key Takeaways: Implications of Language in Data Breach Reporting Navigating CEO Communication and Insurance Coverage Navigating Insurance Coverage in Data Breaches  Resources For more information on the issues raised in this podcast, check out the Cordery Compliance, News Section. For more information on Cordery Compliance, go to their website here. Also check out the GDPR Navigator, one of the top resources for GDPR Compliance by clicking here. Check out the Cordery Data Breach Academy here.  Connect with Tom Fox ●      LinkedIn Connect with Jonathan Armstrong ●      Twitter ●      LinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. We take things in a different direction today as we discuss the somewhat lurid allegations around former Abercrombie & Fitch CEO Mike Jeffries. This matter illustrates the need for robust background checks and support of those who bring forward complaints against top management. The topic of CEO risk, specifically the importance of accountability and investigations in corporate compliance, is a critical issue in today’s business world. It explores the potential dangers CEOs can pose to corporations and the necessity of holding them accountable for compliance initiatives. Tom Fox, a renowned compliance expert, emphasizes the importance of conducting thorough due diligence on individuals, particularly at the senior executive level, to mitigate risks. He believes that behavior patterns often exist before public scandals occur and that it is crucial to identify these patterns through deep investigations. On the other hand, Jonathan Armstrong highlights the challenge of pushing compliance up the organization and the need for thorough due diligence when hiring senior executives. He also stresses the importance of accountability and investigations in addressing misconduct allegations, even if they are historic. Join Tom Fox and Jonathan Armstrong as they delve deeper into this topic on this episode of the Life with GDPR podcast. Key Takeaways: CEO Accountability and Risk Exposure Allegations of Sex Trafficking and Abuse The Significance of Investigating Past Misconduct  Resources For more information on the issues raised in this podcast, check out the Cordery Compliance News Section. For more information on Cordery Compliance, go to their website here. Also, check out the GDPR Navigator, one of the top resources for GDPR Compliance, by clicking here. Connect with Tom Fox ●      LinkedIn ●    Twitter ●    YouTube ●    Facebook ●    Instagram Connect with Jonathan Armstrong ●      Twitter ●      LinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. The recent controversy surrounding Nigel Farage’s banking situation highlights the risks and compliance challenges faced by the banking industry in relation to data protection. In this episode, Tom and Jonathan discuss a data breach in a Scottish hospital during the COVID-19 pandemic. The breach occurred when hospital staff shared patient details on WhatsApp, raising concerns about GDPR compliance. The hospital informed the ICO about the breach but chose not to notify affected patients, highlighting the need for appropriate advice and support when making such decisions. The conversation also explores communication challenges in internal investigations and the privacy and security risks of platforms like WhatsApp. It emphasizes the importance of organizations adapting to the preferences of digital native employees and conducting data protection impact assessments. The podcast also highlights the importance of effective policies, training, and proactive phishing training to prevent cyber-attacks and protect sensitive information. Key Takeaways: ·      Data breach in Scottish hospital ·      The Challenges of Communication in Internal Investigations ·      Importance of Policies and Training ·      Phishing Training Effectiveness  Resources: For more information on the issues raised in this podcast, check out the Cordery Compliance News Section. For more information on Cordery Compliance, go to their website here. Also, check out the GDPR Navigator, one of the top resources for GDPR Compliance, by clicking here. Connect with Tom Fox ●      LinkedIn Connect with Jonathan Armstrong ●      Twitter ●      LinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

Tom Fox and Jonathan Armstrong, renowned expert in cyber security, co-host the award-winning Life with GDPR. In this episode, Tom and Jonathan discuss a troubling inadvertent data release by the Police Service of Northern Ireland (PSNI). The release occurred when a document containing sensitive information about PSNI employees was mistakenly uploaded to a public site, putting officers at risk. The document, inadvertently released based upon a valid FOIA request, wrongfully included the names, ranks, locations, and even surveillance and intelligence details from the Northern Ireland constabulary. This inadvertent release highlights how the bypassing of security checks the caused the breach, emphasizing the real-world impact of data breaches on individuals. Tom and Jonathan also discuss the use of spreadsheets in data breaches and express frustration with the lack of attention given to these incidents. Overall, the conversation stresses the importance of data protection and compliance, and the urgent need for improved measures to address this issue.  Key Takeaways: ·      Data release at PSNI ·      Data release implications ·      Regulator's Call for Improved Data Protection ·      Spreadsheets are evil  Resources For more information on the issues raised in this podcast, check out the Cordery Compliance, News Section. For more information on Cordery Compliance, go their website here. Also check out the GDPR Navigator, one of the top resources for GDPR Compliance by clicking here.  Connect with Tom Fox ●      LinkedIn Connect with Jonathan Armstrong ●      Twitter ●      LinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices