by jm | Apr 1, 2026 | All articles
How to implement GDPR in a small business – step-by-step guide Implementing GDPR in a small business often feels overwhelming. The regulation is complex, the terminology is unclear, and many organizations assume they need external consultants to get started. In...
by jm | Apr 1, 2026 | All articles
GDPR access control and who can access personal data and why it matters One of the most overlooked questions in GDPR is also one of the simplest: who actually has access to personal data? In many organizations, the answer is unclear. Access is granted when needed,...
by jm | Apr 1, 2026 | All articles
Data Processing Agreement (DPA) and when is it required under GDPR A Data Processing Agreement is one of the most common — and most misunderstood — elements of GDPR. Most organizations know they “should have one”. But far fewer understand when it is actually required... by jm | Apr 1, 2026 | All articles
Most common GDPR mistakes (and how to avoid them) The most common GDPR mistakes do not result from a lack of documentation. They result from the fact that documentation is not used in practice. Organizations often have policies, procedures and templates in place. On...
by jm | Apr 1, 2026 | All articles
How to handle DSARs (data subject requests) under GDPR Data subject requests are one of the most practical parts of GDPR. They do not appear in policies or procedures. They arrive in everyday communication — emails, contact forms, customer support messages. And they...
by jm | Apr 1, 2026 | All articles
How long can personal data be stored? GDPR data retention explained Data retention is one of the most misunderstood areas of GDPR. In theory, the rule is simple: personal data should not be kept longer than necessary. In practice, however, organizations rarely know...
