Today, I'm chatting with Mandy Allen from CRM Insight about how a CRM can really boost an organization's workflow, especially in sales, and how it can help predict future sales. We'll also cover some common pitfalls, what to keep an eye out for, and why having a CRM doesn't relinquish you from your data protection obligations. #crm #dataprotection …

Mandy Allen from CRM Insight and I chat about how a CRM can boost customer relationships, increase satisfaction, centralise data, control access, automate and optimise processes, and improve data quality and records management. If you haven't yet introduced a CRM in your business or you're thinking about upgrading your current one, tune in! You'll …

James, from Uptech, and I have a great discussion about email marketing. We covered why it's important to get proper consent and the right way to do it, so you don't run into legal trouble. I particularly wanted to talk to James on this topic, given his 20+ years experience in the sales and marketing sphere, and ask him to share his thoughts. #gdpr…

Do you have a Ring doorbell or similar device at your home? Do you use CCTV cameras for home security? If so, you may need to comply with GDPR, which governs data protection. Non-compliance could lead to serious consequences, including potential lawsuits from your neighbours. In this episode, I cover what you need to know before installing monitori…

Previous episodes discussed how younger generations lack knowledge about data protection. In this episode, Emma Martins, Chief Commissioner of the DMC, explains how she addressed this issue as the Data Protection Commissioner of the Channel Islands. Could this approach be applied across the UK? #gdpr #dataprotection #commissioner #dmc #generations …

I’m talking once again with Emma Martins (Chief Commissioner of the DMC) and we explore how our very different career paths have led us to this profession and how we came across GDPR and fell in love with it. How we have faced many challenges and how we have overcome them. If you would like to know more about GDPR and how it applies to your busines…

Join us for an insightful discussion featuring the amazing Emma Martins, Chief Commissioner for the DMC, as we explore the pivotal role of women in the realm of Data Protection. Together, Emma and I explore the unique contributions women bring to this industry and the significance of achieving gender balance within it. We reflect on how the landsca…

In this exciting episode, Emma Martin (former Data Protection Commissioner of the Channel Islands and now Chief Commissioner for the DMC) joins me for a lively discussion on the fascinating world of AI! Together, we're diving deep into how this technology could shake the very foundation of our democracy. Our conversation is sparked by the eye-openi…

Hello and welcome to the Why Such a Fuss podcast, your go-to source for all things related to data protection, broader disciplines, and business matters. Today, we're delighted to have Annie McNeely, an ISO 9001 practitioner, back on the show. In this episode, Annie and I dive into the topic of 'quality.' We explore what quality entails and why it …

Annie and I continue our journey of discussions and this time we are diving into Continuous Improvement which is all about constantly finding ways to make things better, smoother, and more efficient. Constantly finding ways to improve operations is crucial for staying ahead in our ever-evolving world. Continuous Improvement is at the core of many o…

What is a Business Continuity and why it's important for an organisation to have one. As part of the GDPR & ISO common themes programme Annie McNeely and I talk about this very subject in this episode. Something to consider is that a Business Continuity plan covers the entire business – processes, assets, personnel and more. It is not just focused …

Annie Mcneely, an ISO 9001 practitioner, and I will be talking about Risk Management, which is present both in ISO 9001 and GDPR and we want to highlight it's importance. It features quite often in the GDPR putting obligations on organisations to carry out risk assessments especially when introducing change and in ISO 9001 is about mitigating risks…

In this episode Annie McNeely and I are going to address Change Management and why it plays an important part in any organisations, large or small. How change management helps an organisation to identify and manage risks and how had the Post Office carried out some key steps would have avoided the pitfalls and prevented over 500 postmasters and pos…

Both ISO 9001 and GDPR make reference to Records Management and its importance so Annie McNeely and I explore this subject to provide clarity and understanding. Cristina says => "Under the GDPR records management enables sound data governance – which is essential for good data protection. Having an effective records management system in place helps…

Annie Mcneely, ISO 9001 practitioner, and I are keeping on with the ISO 9001 & GDPR theme and in this episode we discuss the importance and benefit to an organisation to having a process driven approach. Having processes in place and documented it enables the organisation to put in place measures to facilitate business/service continuity, which is …

I am joined by Annie Mcneely, ISO 9001 implementer and auditor, and we discuss how ISO9001 and GDPR support each other and the key elements that they have in common. In this episode we are focusing primarily on the differences and the similarity between the two disciplines Keep listening for upcoming episodes where Annie and I will be discussing: A…

I'm joined once again by Laura Shaw from Training Progress who in a previous life was a Vet Surgeon and Nurse Manager to discuss what should be considered when buying and selling a practice. And as usual there is a GDPR element to it as well - after all the aim of this podcast is to generate awareness of GDPR and how it features in all aspect of a …

In this episode Laura and I explain how Training Progress can support business and GDPR processes. The GDPR has some key processes that any organisation must follows and so it's important to have a robust system that can support them. The regulation also demands that in order for an organisation to fulfil its obligations it must have supporting pro…

In today’s episode Laura Shaw, who is the Business Development manager at Training Progress and in a previous life a vet surgeon, and I are continuing our discussion on how the Training Progress system can be used as a document management system. If you would like to know more about GDPR and how it applies to your business, we can be reached at inf…

In today’s episode I’m joined by Laura Shaw, who is the Business Development manager at Training Progress and in a previous life a vet surgeon. Laura and I have taken the opportunity to discuss how Training Progress can support a GDPR implementation and maintenance and how Laura and her team are using for that exact purpose. I also explain how I us…

Where is the data kept? Are you using a shared environment to store your data to facilitate collaboration amongst your workforce? if you are, what are the things that you should be aware of with regards to data protection and security? Do you know if a cross data transfer is taking place? and if so, do you know if the correct safeguards are in plac…

When it comes to working from home from a GDPR perspective several things should be considered. First of all security. Secondly remote working policies Organisation must bear in mind that the employee has a right to privacy in their home and I explain what this means and how the organisation, perhaps unintentionally can over step the mark. While Ja…

What is a Data Controller and what is a Data Processor? These are two key roles within the GDPR and it is important to understand which role your organisation fulfils to determine and understand your legal obligations. In some instances you might be fulfilling both roles, and so it's essential to be aware what your business obligations are under on…

James, from Uptech, and myself will be discussing all of the measures that an organisation can take to avoid a data breach. From: Technical security measures such as password and encryption Physical security measures organisation security measures and some other obvious measures If you would like to know more about GDPR and how it applies to your b…

Everyone is talking about it so I thought I'll do a podcast with my view and explain how it could all have been avoided if they had applied GDPR and Data Protection by Design. People would have not lost their lives, their savings, their livelihood etc... Happy listening! If you would like to know more about GDPR and how it applies to your business,…

In this episode I share with you 3 real cases in which HR and GDPR meet and how to go about it the right way. I will explore how consent is not always the answer to everything which HR tends to use for everything. what steps to take when using 3rd parties in an employer/employee scenario and what exceptions are available during a negotiation. If yo…

What should you do if you have a data breach? James and I are discussing what actions an organisation should be taking in the event of a data breach. Such as consider whether the data impacted was personal data and if so the categories of data, are you the controller or the processor, what type of data breach it was, was the breach intentional or u…

Do you know what a data breach is? would you be able to identify it if it presented itself to you? If the answer is No or Yes but it's a shake yes – then it might be worth you listening to this short podcast. Not only it provides you with a definition of a data breach that will enable you to recognise and identify them it also tells you what action…

In this episode James and I are sharing some data security incidents that have recently taken place to keep you up to date. The first covers the IT provider CTS who provides IT system to conveyancing firms which has suffered a cyber-attack, and a large number of conveyancing solicitors are unable to access the data and therefore complete the requir…

Did you know that sending an email to wrong email address is the most common breach? In fact is one of the top breaches reported to the ICO and while they seem innocent on the surface they can cause real harm to individuals. In this episode I will be sharing some tips on how to avoid these type of data breaches - so listen in! :-) If you would like…

In this episode the focus is on data transfer, which is a complex subject and can be confusing. We have taken this subject right back to the basic with the aim to provide clarity and understanding. What is a data transfer? The different types of data transfer What safeguards you need to put in place if the transfer is to a country that does not hav…

In this episode James and I are exploring how GDPR & Cyber Security apply to different size businesses. Solopreneur, microbusinesses, large SME and charities. This is a question that we often get asked so we thought to tackle it in this podcast If you would like to know more about GDPR and how it applies to your business, we can be reached at info@…

Any organisation large or small should have am induction process and as part of this process training should be featuring rather high. The new member should be given an overview of the organisation, how to access and use the tools for the job and they should also be trained in GDPR. This applies to both permanent/temporary staff and volunteers. In …

Have you ever wondered whether you are taking the right steps after selecting the candidate? perhaps there's something you've missed or something you should be doing differently. Fear not, Kate from JennettsHRSolution and myself are coming to the rescue. Listen to this podcast to find out if a privacy notice should be included in conjunction with t…

In this episode Kate and I are exploring the various channels available to employers to attract talent and not just volume but high calibre talent. We also discuss how to be perceived as an employer of choice and what information should be included in the job description to ensure the organisation is tapping into the right pool. And as always I tal…

is it Privacy Notice or Privacy Policy? there is much confusion on this topic not only on the right terminology but also its purpose and function. There is also the misconception that it needs to be a boring long document and while it does have contain certain information it can take many forms. and does a business just need one of this? and once i…

In this episode James and I are covering not only what policies are required from a GDPR and IT perspective, we also discuss the difference between the two and the different perspectives. Often this area can be a bit muddy and unclear leaving businesses confused as to what it's required. If you would like to know more about GDPR and how it applies …

Data retention is often talked about and int this episode I'm sharing some key points on this topic and James tells us how technology can support an organisation to stay in line with their retention policy. If you would like to know more about GDPR and how it applies to your business, we can be reached at info@cvgsolutions.co.uk alternatively on so…

Today we are going to focus on ‘How to select the best candidate from multiple applicants’ Kate from JennettsHRSolutions is sharing some techniques to help selecting the right candidate while I will be covering the use of psychosomatic testing as part of the recruitment process. How the data collected from these type of tests is medical data, which…

In this episode Kate from JennettsHRSolutions will be exploring Fair/unfair process What not to ask the candidate Interview techniques while I will be covering what data an employer or recruiter is likely to collect during the recruitment process, what should and should not be collected and common pitfalls. If you would like to know more about GDPR…

In this episode we are joined by Kate Jennett from Jennetts HR Solutions and we discuss what candidates are looking for in an employer in particular the new generations. If you would like to know more about GDPR and how it applies to your business, we can be reached at info@cvgsolutions.co.uk alternatively on social media just search for CVG Soluti…

What is the difference between Cyber Security and Information Security (ISO 27001)? This and more is what James, from Uptech, a Cyber Security specialist) and I will be covering in this episode. If you would like to know more about GDPR and how it applies to your business, we can be reached at info@cvgsolutions.co.uk alternatively on social media j…

What is the difference between Accountability and Responsibility? Can they be delegated? and if so to whom? Can the GDPR accountability be delegated to a GDPR Professional? Listen to James and I discussing this topic in details If you would like to know more about GDPR and how it applies to your business we can be reached at info@cvgsolutions.co.uk…

In this episode James, from Uptech, and I are discussing weather it is hard to implement cyber security and GDPR, which is a question that we both get often. Like with many things having the correct understanding and information, instead of relying on what you might have heard from a non specialist on the subject in a networking, is key to get the …

I often get asked 'why is training important?' – my response is ‘you don’t know what you don’t’. There is no such thing as GDPR-compliant data or software. It’s the purpose and how it’s been used that makes it compliant. Knowledge is power, it creates awareness it helps and support people to do the thing right, to eliminate errors which often leads…

Some interesting developments have taken place in the Data Protection world recently that you should be aware of Communication from banks about rates are are no longer considered direct marketing The Online Safety Bill is finally here and will become law soon The UK-US Data Bridge for data transfer to the USA If you would like to know more about GD…

When a business registers with the ICO and pays the fee does the certificate that the ICO issues a confirmation of compliance? James and I are discussing this and more in this episode #gdpr #dataprotection #trainingBy Cristina Vannini-Goodchild

In the last episode James walked us through all the different technical security measures that an organisation can apply. In this episode I’m going to share with you alternative security measures that you should implement within your organisation. such as: Physical security Clear Desk policy Screen Lock policy how to properly secure data on paper P…

Why is it important to understand the different categories of personal data and why the GDPR only applies to the data of living individuals. We also be talking about the various technical security measures that a business should implement to protect the data. This and more it's what James and I are discussing in this episode. #gdpr #dataprotection …

In our previous episode we explored what constitute personal data such as name, address, phone number, email etc...which are the usual suspects. However, the GDPR defines personal data as 'any information relating to an identified or identifiable natural person' (natural person = living individual) therefore some information that at first they migh…