Cookie consent banners are supposed to protect privacy under the GDPR and ePrivacy rules. Instead, too many still push users toward “accept” and make “reject” hard, hidden or confusing. That …
What the ICO’s Latest Fine Tells Us About Processor Risk In April 2025, the Information Commissioner’s Office (ICO) fined Advanced Computer Software Group Ltd £3.1 million for failing to secure …
You may well have landed here as a result of receiving a notification from Microsoft that you are ‘in the Supplier Security and Privacy Assurance (SSPA) Programme! What does it …
Whilst COVID-19 means we may be working from home, the need to manage the Microsoft supply chain has not changed. Our clients are still being challenged with meeting the compliance …
SSPA assessment key to success Have you been asked to independently verify your SSPA compliance? Are you a small, agile company that does not really have a lot of documented …
Making SSPA assessments easier We understand that external audits are not ‘relished’ by everyone. There can be a lot of time and effort to identify relevant evidence to support your …
Hosted by The Chartered Institute of Marketing (CIM) and delivered by the Head of iCompli, this is an essential course for anyone working in marketing. GDPR requires a focus on …
The longer read The new version 10 DPRs introduces Section K, with requirements focused on the concept of ‘AI Systems’. What is an ‘AI System’? Microsoft defines this as. An …
SSPA Version 10 Microsoft continues to update its data protection requirements (DPRs) for its Supplier Security & Privacy Assurance program (SSPA), to keep pace with technical and legal challenges. It …
Overview Microsoft has updated its data protection requirements (DPRs) for its Supplier Security & Privacy Assurance program (SSPA). . Whilst thirty-nine of the previous fifty version 8 DPRs remain unchanged, …
