Privacy & security
GDPR marked a step change in how organisations look at data: businesses are now stewards of, and accountable for, the personal data they hold. Market practice around the layered and interlocking issues of GDPR compliance is gaining traction whilst the first substantial fines under the new regime emerge and knotty issues like anonymisation, the controller/processor border, profiling and territoriality can seem intractable.
Bound up with GDPR, information security risks to the enterprise are also rising. The UK’s National Cyber Security Centre noted recently that as organisations move more data to the cloud, it will become a tempting target for a range of cyber criminals.
We work with many organisations on GDPR compliance and their privacy and security questions and understand the technical and practical imperatives and trade-offs that are key to successfully managing opportunities and risk.