GDPR – the myth of ‘compliance’

The words ‘compliance’ and ‘GDPR’ are often found together in glossy promotional material or websites. It’s a good approach to marketing but in reality – it’s not that simple!

In this video Daragh O’Brien notes that the GDPR should really be viewed through the lens of ‘risk management’. When considering your risk management process you should think about a number of things. These include:

  • The nature of the information you are processing
  • The nature of the individuals / data subjects you are processing data about
  • The nature of the processing itself.
  • The risks or impacts for the individual / data subject and their fundamental rights.

Learn 2 methodologies / frameworks for a successful GDPR implementation through our corporate training solutions – contact


A short video about the sanctions and penalites associated with the GDPR

A short video about the sanctions and penalites associated with the GDPR. Daragh O’Brien of Castlebridge Associates notes that sanctions under the GDPR fall under 3 categories: Administrative fines, litigation, and other regulatory action.

Fines, litigation and reputational damage have been regularly highlights but ‘other regulatory actions’ are often ignored in GDPR information packs. These can include an order to stop processing or even deleting databases.

Want to know how to reduce the risk of penalties or sanctions via our staff training and reporting services? Contact


The GDPR in summary

A short summary of the General Data Protection Regulation from our library… our next 2 posts in this series will focus on ‘sanctions associated with the GDPR’ and ‘The GDPR in more detail’.