ODPA Data Protection Teabreak

Podcast 4 Steve Falla by ODPA Guernsey

Storytelling is one of the most effective ways of sharing knowledge and can be a powerful tool to inspire change. Project Bijou is the Office of the Data Protection Authority's social initiative, which aims to harness the power of shared experiences and stories to promote ethical data use and engage people on a cultural level. In this Project Bijou podcast, Guernsey Data Protection Commissioner Brent Homan sits down with his counterpart, Jersey's Information Commissioner Paul Vane, to discuss the shared opportunities and challenges of overseeing data protection and privacy legislation within smaller jurisdictions which are also global financial centres. They talk about how regulatory co-operation can help overcome technological challenges, promote compliance and amplify their ability to protect privacy rights in the Channel Islands.

Alun Williams is the Be Active Education Lead at Guernsey's Health Improvement Commission, a charity dedicated to empowering, enabling and encouraging healthy living in Guernsey and Alderney. In this Project Bijou guest podcast, Alun discusses working with the ODPA on a fitness tracker aimed at getting Bailiwick children moving and his long, distinguished career serving the Bailiwick.

For this year's Bijou Lecture join Dr Vicki Nash for an exploration of online safety issues for children. In this year's lecture she shares her insights with the ODPA's Data Protection Commissioner Brent Homan. They start off by discussing how keeping children safe in the digital era means striking a delicate balance between our parental urge to protect them and the importance of empowering them. They move on to explore the need for parents and children to openly share their experiences and knowledge with each other, and how education leaders play a critical role in empowering young people to be safer online. Moving to the role of regulation, they explore the implications of the Online Safety Act which was passed into UK law in October 2023. Finally, they take an imaginary trip to the year 2054, to imagine how today's children will look back, as adults, on the actions (and inactions) of today's tech giants, parents, and policymakers. ------ ⭐ What is the Bijou Lecture series? The ODPA launched its annual Bijou Lecture in 2022, as part of its outreach arm ‘Project Bijou' which aims to encourage the sharing of stories, knowledge and experiences related to ethical data use, in a way that benefits everyone. You can access all lectures at: www.odpa.gg/project-bijou/the-bijou-lecture

* WARNING: This podcast includes references to rape and sexual assault and the murder of Brianna Ghey. Details of support / advice are available here if you are affected by this: https://www.odpa.gg/help-and-advice/mental-health-support/* As most parents or carers will tell you, screen time is an ongoing battle. How much is too much? What are they looking at? Will they miss out on opportunities or friendships if you don't let young people have a smartphone? As the Bailiwick of Guernsey's first ever digital safety development officer, Laura Simpson has at least some of the answers. She is passionate about educating and empowering children and young people to make safer choices when navigating the online world. Employed by Guernsey Police and based in the high-tech crime unit, Laura is only too familiar with the harms that can arise when people's personal information is shared inappropriately. Laura tells Katherine Levy about her role, how it intersects with personal data and what we can all do to help educate children and young people about digital literacy.

In the first data protection tea break of 2024 we meet the Bailiwick's new Data Protection Commissioner Brent Homan. Previously the Deputy Commissioner of the Office of the Privacy Commissioner in Canada Brent has led a number of high profile investigations into areas such as facial recognition, location tracking and behavioural advertising to name just a few. He has also been involved in a number of global privacy initiatives. Kirsty Bougourd chats to Brent about his plans to build on the existing work of the Office of the Data Protection Authority through a 3 pillars strategy of balance, trust and partnership. He talks about what the regulated community can expect from the ODPA and his plans to continue to engage and support the islands' population. Brent discusses the global aspect of work relating to data protection and how living in smaller jurisdictions can magnify the risks. They also discuss continuing to develop activities and resources to support young people and to educate parents and their children about how new technology uses their data and can both enhance their lives but also potentially cause harm. In particular Brent highlights the ongoing work developing a Children's Framework to help set guidelines on the use of young people's data in the Bailiwick and the need for people to take part in the survey to produce something fit for purpose. Kirsty and Brent also chat about the big move and how him and his family are all settling in and embracing island life.

Discover the story behind Warro the Data Bear and her friend Bijou the Blue Tit. The book is the Bailiwick of Guernsey's Office of the Data Protection Authority's (ODPA) latest project to help engage young people with the issues around data protection. Aimed at children aged 7-10 years old, the book tells of Warro's adventure into a world filled with data where she learns about what personal data is and how it might created and used. The ODPA are distributing the book to all year 4 students in Bailiwick schools in November 2023 to tie in with the UN's World Children's Day. Katherine Levy Spencer speaks to author Kirsty Bougourd about the book and where the ideas came from. More at: https://www.odpa.gg/warro

* WARNING: This podcast includes reference to suicide, please contact www.samaritans.org if you are affected by this.* In this episode the Office of the Data Protection Authority's Senior Investigator, Ed Chapman, talks to Kirsty Bougourd about why we should all be so careful with personal data - whether it's ours or someone else's. Ed leads the ODPA's investigations into data breaches and sees first-hand the effect of a breach on the person whose personal data is involved, and also helps uncover how the breach occurred. He talks about how we can all become complacent with personal data and lose sight of its incredible value, and how intrinsically it is linked to who we are. Ed also discusses how easy it can be to unintentionally cause a breach to occur and why following some simple steps can help prevent them from happening. In early 2023 the ODPA published a document, written by Ed, explaining the Top 10 Common Pitfalls seen when handling people's data, and the practical steps that can be taken to mitigate them. As well as talking about the importance of personal data, Ed and Kirsty discuss these pitfalls and explain the reasoning behind some of them in more detail. You can read more about the 10 common pitfalls at: www.odpa.gg/information-hub/guidance/handling-data-breaches/

The Office of the Data Protection Authority is honoured to have Elizabeth Renieris, an expert on data governance and the human rights implications of new and emerging technologies, as our 2023 Bijou guest lecturer. The author of Beyond Data: Reclaiming Human Rights at the Dawn of the Metaverse, her passion for data protection was ignited at university when a classmate hacked into internal residential house directories, scraped the student ID photos of female residents from their pages and pitted the undergraduate women against each other on a website called Facemash. Her classmate was Mark Zuckerberg, who went on to control one of the most powerful companies in the world. Introduction by Bailiwick of Guernsey Data Protection Commissioner Emma Martins. More at: https://www.odpa.gg/project-bijou/the-bijou-lecture/the-bijou-lecture-2023/

In this episode, Kirsty Bougourd speaks to Matthew Parker who, for the past 11 years, has dedicated hundreds of hours of his free time to educating the Bailiwick's young people about online safety and data protection. In early 2023 Matthew was awarded one of the Islands Data Governance Forum's inaugural Bijou Awards for his dedication and commitment all given to local schools for free. He discusses his motivation and how the digital landscape has changed over the years.

This audio is based on a fictional narrative set in the near future and written by one of the founders of augmented reality and an expert in AI, Louis Rosenberg. It was performed by Oliver Bailey-Davies, Sam Garioch and Sarah Hansmann Rouxel from Tin Whistle Productions. It was produced and recorded by Simon Prince at Hot Source studios in Guernsey. Louis Rosenberg is campaigning for 'guardrails' to be put in place before new technologies develop and evolve to protect users. Metaverse 2030 is an example of 'useful fiction', stories which help explain important issues of the time and enable people to grasp otherwise mercurial concepts, such as the metaverse, artificial intelligence and augmented reality. Louis supports the ODPA's Project Bijou, a social initiative to engage people through storytelling, and kindly let us use his narrative which has been brought to life in the form of this spellbinding audio play. It is the perfect cautionary tale to entertain while educating people, and the message is particularly pertinent for young people who are perhaps most at risk from harmful, unregulated online behaviours. You can listen to a Q&A with Louis Rosenberg where he discusses the wider themes covered in Metaverse 2030 at: https://www.odpa.gg/project-bijou/theme-3-the-role-culture-plays-in-data-and-vice-versa/video-real-guardrails-in-immersive-technologies-navigating-the-metaverse-safely/

For International Women's Day 2023, the UN is highlighting the need for digital inclusion. Here at the ODPA, we are marking this with a call to action from one of the women doing everything in their power to make this a reality. Katherine Levy talks to Stephanie Luce, the co-founder of the Islands Data Governance Forum, which brings together the fields of cyber security and data protection. Stephanie is also Principal Policy Officer Cyber Security and Data Protection for the Government of Jersey and is currently seconded to the Jersey Cyber Security Centre. She has a wealth of experience and knows first-hand what it is like to be the only female voice in the room when policies are being decided and decisions made. She discusses her career in cyber security and data protection, the historical under-representation of women in these sectors, the danger of gender biases in the digital sphere and her cautious optimism for the future.

In this podcast two members of the ODPA's Communication Team discuss the approach used to engage young people in the importance of protecting personal data to children.  Kirsty Bougourd, ODPA Outreach Officer, is responsible for finding ways to help young people understand more about personal data and why they need to look after it.  ODPA Communications Officer, Katherine Levy, finds out more about the thinking behind some of the projects that have been launched in schools and the challenges Kirsty has faced in bringing a subject like data protection to younger generations and the way she has tackled it. Find out more about the work the ODPA does with children and young people, via Project Bijou Seeds at: https://www.odpa.gg/information-hub/children-young-people/

In this episode, Joh Harvey, the founder of health food delivery service and café the Raw Store shares his experience of being the victim of a cyber-attack. It resulted in several of his clients being defrauded, despite the fact he did not store card details on his website. With cyber-attacks increasing in both frequency and sophistication, Joh hopes his story could help other small businesses protect their data – and clients - from opportunistic hackers. Please excuse the traffic noise, we recorded this in the Raw Store's bustling headquarters, which is on a busy road.

In this contribution to the ODPA's social initiative Project Bijou, privacy professional and Plain English expert, Emma Butler explains why writing clearly is so important and gives tips on how to do it well. She runs through the key factors to consider and gives tips on what to remember when getting a message across is what it's all about.

In this episode Data Protection Commissioner for the Bailiwick of Guernsey, Emma Martins, reflects on 2022. She discusses what lessons can be learned from breaches reported to the ODPA and how we can all be better prepared for caring for personal data properly. She reflects on the importance of the ODPA's initiatives to engage with the wider community and the vital role they play in the strategic aim to prevent breaches from happening in the first place. Mrs Martins also looks ahead to 2023 and considers how data protection doesn't block innovation but that considering people's privacy and data when developing new technology is a vital part of the process.

How do we safely use all the internet connected devices that we now surround ourselves with and do we understand the risks? In this episode the ODPA's Tim Loveridge gets some help and advice from local experts and learns more about the risks the devices, or our lack of knowledge, poses. He gets useful tips on what to do or not to do when using them. They also delve into what the future might hold and how the increasingly connected world might change the way more of us work.

Description at: https://odpa.gg/project-bijou/theme-5-the-benefits-of-looking-after-personal-data-well/videopodcast-regulation-is-a-journey-not-a-destination

This is the audio transcription of The Bijou Lecture (2022) with Susie Alegre. Read more at: www.odpa.gg/project-bijou/the-bijou-lecture-2022/

What are personal data breaches and why should we all care about them? In this episode Kirsty Bougourd talks to Deputy Commissioner for the Bailiwick of Guernsey, Rachel Masterton, to find out more about what a personal data breach is and why the ODPA has changed the way they are reported. Every 2 months the ODPA releases the number of personal data breaches reported in the Bailiwick. The way these are reported was changed from 1st January 2022 so that organisations can specify how the breach happened and explain the circumstances that led to the breach. They can also report what the outcome of the breach was, for example the accidental disclosure of personal data. This means that there is more information available to tell the story behind the breach and reminds us that personal data has a human at the heart. Rachel explains why these changes have been made and how they give us more information to help prevent breaches from happening in the first place. She also explains how breach reporting works alongside the other duties of the ODPA.

In this episode to mark international Data Protection Day 2022 Bailiwick Data Protection Commissioner, Emma Martins, introduces Kirsty Bougourd's conversation with Charlie Cox, CEO of the Youth Commission. They discuss why it's so important to engage with young people and Kirsty also chats to some members of the YC's Youth Forum. They share their views on what data protection is and how well protected they feel their data is. Emma also explains why the Office of the Data Protection Authority (ODPA), is joining forces with the Guernsey Youth Commission to extend the reach and impact of its school programme which helps young people understand about personal data, their rights and looking after data safely. Young people are among the most vulnerable members of our community and they are often the most prolific sharers of their personal data, through online games and activities. It's hoped to bring the messages of caring for personal data properly to a much wider audience through the partnership. See odpa.gg/schools for more.

Personal data isn't just facts and figures. It's about people and how we look after their data can have far-reaching consequences, especially if we don't do it well. Personal data is one of the most valuable, non-consumable assets that we own and that data now includes not just passwords and account details but biometric data like our fingerprints, our face and our DNA. Six months on from the launch of the ODPA's social change initiative - Project Bijou – we discuss what all this means and why the project is so important. Bailiwick Data Protection Commissioner, Emma Martins, and Tim Loveridge and Kirsty Bougourd of the ODPA, discuss how we all have a role to play in looking after data ethically. They consider why what we do individually is so important and how even a small jurisdiction like the Bailiwick has a vital part to play in the global bigger picture. (Tim refers to a Finnish schools initiative combatting fake news, you can read more about this here: https://www.weforum.org/agenda/2019/05/how-finland-is-fighting-fake-news-in-the-classroom/)

In May 2021 we launched Project Bijou to try and bring about social and cultural change in everything related to data protection. Instead of viewing looking after people's personal data safely as a burden we hope to encourage businesses and individuals to instead see it as a moral responsibility, something as natural as putting on your seatbelt when you get in a car. We want people to understand why the Laws are good for us all so to help explain, the Bailiwick's Deputy Data Protection Commissioner, Rachel Masterton, talks us through the ten rights we have under the Law. And in doing so attempts to answers the important question, “What has Data Protection ever done for us?”.

In this episode, we're joined by Callie Loveridge and Aaron Le Noury, who we've invited to the podcast as part of Project Bijou. Callie is the States of Guernsey's Head of Data Protection and Aaron is a Data Protection Officer within her team. In this podcast they discuss their roles in the machinery of government and the challenges associated with ensuring public administration is carried out in accordance with the Data Protection Law. Project Bijou is a social initiative we launched in May 2021 in the Bailiwick of Guernsey. With this project we’re encouraging everyone to share stories, knowledge and experiences relating to ethical data use, in a way that benefits everyone. The project aims to support and nurture positive cultural change around how people and organisations treat people’s data. We hope to engage people on a cultural level, a level that goes beyond law. You can find out more at odpa.gg/bijou.

In this episode, we're joined by Vicky Le Poidevin, who we've invited to the podcast as part of Project Bijou. Vicky is a Director of Offshore Consultancy & Training Limited. She tells us her personal story of how she ‘got’ data protection, and how it has changed her approach to work. She details the time spent working in our team, project managing our website redevelopment project in 2020, and how being immersed in a culture where data protection lives and breathes changed her outlook further. Her focus on the human beings at the heart of data protection legislation and preventing them from being harmed is absolutely key. Project Bijou is a social initiative we launched in May 2021 in the Bailiwick of Guernsey. With this project we’re encouraging everyone to share stories, knowledge and experiences relating to ethical data use, in a way that benefits everyone. The project aims to support and nurture positive cultural change around how people and organisations treat people’s data. We hope to engage people on a cultural level, a level that goes beyond law. You can find out more at odpa.gg/bijou.

In this episode, we're joined by Huw Thomas, who we've invited to the podcast as part of Project Bijou. Huw is Counsel at law firm Carey Olsen. He tells a story that illustrates that no-one is immune from making mistakes and that businesses need to think differently about how they manage behavioural risk. Huw argues that educating staff about taking care of personal data needs to be done better: to take full account of how people actually behave, rather than how businesses would like them to behave. He suggests making use of people within your business who understand how people behave to help write shorter, actionable policies and procedures around use of data. He concludes that taking good care of personal data makes good business sense for us as a jurisdiction, as it protects our key financial services sector. Project Bijou is a social initiative we launched in May 2021 in the Bailiwick of Guernsey. With this project we’re encouraging everyone to share stories, knowledge and experiences relating to ethical data use, in a way that benefits everyone. The project aims to support and nurture positive cultural change around how people and organisations treat people’s data. We hope to engage people on a cultural level, a level that goes beyond law. You can find out more at odpa.gg/bijou.

In this short podcast we're joined by Richard Hanrahan who we’ve invited to the podcast as part of Project Bijou. Richard is CEO of Agilisys Guernsey. He discusses Agilisys’ role in the States of Guernsey’s digital transformation project, how it’s going to shift delivery of public service, and how to look after people’s data along the way. Richard recognises the part we all have to play as individuals in valuing our data, and being aware of the different ways organisations might treat us and our data. He also highlights the role of culture in getting people to talk about, think about, and track the careful use of people’s data. Richard emphasises the need to build in respect for people’s data at the outset, and for it to be an intrinsic part of how an organisation works. He concludes on the potentially difficult choices we will all have to make as we move into a future of personal data being increasingly processed by AI, and the ethical issues that arise. Project Bijou is a social initiative we launched in May 2021 in the Bailiwick of Guernsey. With this project we’re encouraging everyone to share stories, knowledge and experiences relating to ethical data use, in a way that benefits everyone. The project aims to support and nurture positive cultural change around how people and organisations treat people’s data. We hope to engage people on a cultural level, a level that goes beyond law. You can find out more at odpa.gg/bijou.

In this podcast Annabel Nicholas and Matt Loaring discuss data use and organisational culture within the midwifery and paediatrics team that Annabel leads. We’ve invited Annabel and Matt to the podcast as part of Project Bijou. Annabel led a period of significant change and improvement in Guernsey’s maternity services, and because Project Bijou is all about shifting cultures and behaviours for the better, we want to hear how she did this, so that others looking to engage their own teams in adopting positive changes can learn from her experience. What we learn is that culture change, and data protection, doesn't have to be complicated - it can be common sense and as simple as treating people well. Project Bijou is a social initiative we launched in May 2021 in the Bailiwick of Guernsey. With this project we’re encouraging everyone to share stories, knowledge and experiences relating to ethical data use, in a way that benefits everyone. The project aims to support and nurture positive cultural change around how people and organisations treat people’s data. We hope to engage people on a cultural level, a level that goes beyond law. You can find out more at odpa.gg/bijou.

In this episode we're hearing from Richard Field and Jarrad Knoetze of Appleby (Guernsey) LLP who we’ve invited to the podcast as part of Project Bijou. Project Bijou is a social initiative we launched in May 2021 in the Bailiwick of Guernsey. With this project we’re encouraging everyone to share stories, knowledge and experiences relating to ethical data use, in a way that benefits everyone. The project aims to support and nurture positive cultural change around how people and organisations treat people’s data. We hope to engage people on a cultural level, a level that goes beyond law. You can find out more at odpa.gg/bijou. Richard and Jarrad take a look at why data protection is not just a legal concept, but is part of our daily lives. Richard in his role as Chair of the Bailiwick of Guernsey Data Protection Association also discusses why building a network of privacy professionals is important for the island’s general wellbeing.

In this podcast Simon Entwisle, a member of Guernsey’s Data Protection Authority, talks about the role of regulation, and what advantages there are to smaller jurisdictions, such as the Bailiwick. He observes that most organisations want to look after people’s data well, and that most regulators recognise those good intentions. He warns against slipping into well-intentioned complacency – it’s essential that businesses keep up-to-date with what’s required of them. Finally, Simon underlines the role of the regulator in demystifying the legislation, to make it relevant, and understandable as widely as possible – and how that’s what Project Bijou is all about. Project Bijou is a social initiative we launched in May 2021 in the Bailiwick of Guernsey. With this project we’re encouraging everyone to share stories, knowledge and experiences relating to ethical data use, in a way that benefits everyone. The project aims to support and nurture positive cultural change around how people and organisations treat people’s data. We hope to engage people on a cultural level, a level that goes beyond law. You can find out more at odpa.gg/bijou.

In this episode we're hearing from James Filleul, the Editor of Bailiwick Express, who we’ve invited to the podcast as part of Project Bijou. We’ve turned the journalism table on him, so today he is interviewed by our commissioner, Emma Martins. Project Bijou is a social initiative we launched in May 2021 in the Bailiwick of Guernsey. With this project we’re encouraging everyone to share stories, knowledge and experiences relating to ethical data use, in a way that benefits everyone. The project aims to support and nurture positive cultural change around how people and organisations treat people’s data. We hope to engage people on a cultural level, a level that goes beyond law. You can find out more at odpa.gg/bijou. James tells us that as an Editor, the most frequent time he comes across the words ‘data protection’ is from someone using it to keep their activities OUT of the public domain, and close down a story. Journalism is often controversial; if it is done properly, it involves publishing information which someone usually doesn’t want to be public. Very often they reach for ‘data protection’ as their ‘weapon-of-choice’ to prevent that happening. Nearly always, this is based on a misunderstanding of the law, and it is why journalism is specifically addressed by data protection laws. Without good journalism, democracies stop being democratic; this reality places both a great privilege and a huge responsibility on journalists’ shoulders.

Registration with us is changing in 2021, what is it all about and what does it mean for you? In this podcast the Bailiwick of Guernsey’s Data Protection Commissioner Emma Martins explains to Kirsty Bougourd what is changing with registration and how it’s really just the first step in a journey towards looking after personal data well. From January 2021 there will no longer be any exemptions to registering with the ODPA and it’s vital for anyone using personal data in their work to register. This includes small businesses and sole traders that may only hold or use limited personal data. Emma runs through what has and hasn’t changed in terms of registration and payment. She reminds us that there has never been an exemption to compliance and to looking after personal data in our care properly and in line with the Law. Kirsty and Emma also discuss what the ODPA is doing to assist anyone who may be new to registration or who has any queries regarding their business or work. As Emma says, data is the fuel of the economy and everyone benefits if data is looked after well.

How smart are the smart devices in your life and have you been smart enough to make sure they’re secure? In this latest podcast, Tim Loveridge gets guidance from local cyber security expert, Carl Ceillam, on how to ensure these gadgets designed to enhance our life and make it easier, don’t instead put us at risk from hackers and harm. Following on from our digital footprint podcast where we discussed the data trail we leave behind; we now look more closely at internet connected devices. Usually intended to improve our security they may actually be creating more risks if they aren’t set up properly. Kirsty Bougourd joins in the discussion sharing her own experience and Carl gives invaluable advice and top tips on choosing the right device and making sure it’s set up securely. He explains why we should assume we will get hacked and that if we’re unsure of a device not to buy it let alone plug it in.

As more of our daily activities take place online, and smart connected devices make their way into our lives and homes, Tim Loveridge talks to the Bailiwick’s Deputy Data Protection Commissioner, Rachel Masterton, about the digital footprint we leave behind. Rachel and Tim consider the importance of understanding what data is being collected and how to clear your history or update your privacy settings to restrict what you share. You may expect your online browsing history to be stored and your social media activity. You may be used to websites remembering you and reminding you to buy things in your virtual basket, but what about less obvious tracking? Your smart doorbell or smart lightbulbs may be storing and sharing information about you and your habits, but do you really know what is being saved, shared and where? Rachel and Tim say it's vital not to be afraid of using technology that might make your life easier but stop and think first. Make sure you adjust your privacy settings and consider what you share about other people too so you don’t add to their digital footprint.

On the 14th International Data Protection Day, this podcast is about changing perspective when it comes to our personal data. Data Protection Day commemorates the signing of the first legally binding international treaty dealing with personal data processing and privacy. In this podcast we look at how we need to look beyond the law to help change attitudes to our data, both ethically and legally. The Bailiwick of Guernsey’s Data Protection Commissioner, Emma Martins, talks to Kirsty Bougourd about how laws are just the starting point for change; that respecting and considering the human aspect of data is an issue for the entire population. Emma and Kirsty discuss the development of a Manifesto for Change that is broader than and goes beyond legislation, how we all need to play our part in creating a cultural shift in attitudes and why we mustn’t become statistically numb to what we hear about data breaches but instead must pause and reflect on what they mean to the person at the heart. As Emma says, this isn’t about having anything to hide, it’s about basic privacy and simply closing the curtains at the end of the day, both physically and virtually.

This latest data protection tea break is all about accountability, arguably the most important of the seven data protection principles. In October 2019 ODPA board member Chris Docksey delivered a keynote speech on accountability and how it is achieved at an international conference on data protection and privacy. This podcast features Guernsey’s Deputy Data Protection Commissioner Rachel Masterton and the ODPA’s Chief Operating Officer Tim Loveridge discussing key points from Chris’s presentation, including the relevant clips. They expand upon some of Chris’s key points and echo the responsibility organisations have to be accountable for how they look after our data. As well as being on the board of the ODPA, Chris is Honorary Director General of the European Data Protection Supervisor.

In this seventh edition of the Data Protection Teabreak, Guernsey's Deputy Data Protection Commissioner, Rachel Masterton, and Kirsty Bougourd consider the 7 data protection principles. They lie at the heart of the Bailiwick’s Data Protection Law and provide guidance rather than hard and fast rules to follow. Rachel and Kirsty discuss how working within the spirit of these principles is the foundation of compliance and good practice. They discuss each principle, how to use and apply them to everyday working life, and how interconnected they all are.

In this latest edition of the Teabreak, Guernsey's Assistant Data Protection Commissioner, Rachel Masterton, explains to Kirsty Bougourd how the roles of Controller and Processor differ and how to determine which is which. They discuss the kinds of organisations that are processors or controllers and what you can do if you are unsure what category your organisation falls within. Rachel also explains the importance of contracts between the two and how both Processors and Controllers are responsible for ensuring they are in place. Kirsty and Rachel also discuss details of where to find further help and information.

In the 5th Data Protection Teabreak Commissioner Emma Martins explains to Kirsty Bougourd how data protection breaches can cause harm to individuals. They discuss the different types of harm that people can suffer as the result of a breach and the role of the Office of the Data Protection Authority.

On May 9th every year Guernsey celebrates the Liberation of the island from the German occupying forces during the Second World War. In this special edition of the Data Protection Teabreak, Data Protection Commissioner Emma Martins and Kirsty Bougourd discuss how the atrocities committed during the Second World War led to the development of data protection laws. They talk about when the ideas of privacy were first developed and how the gathering and processing of personal data led to the murder of millions of people. Listen to Emma explain how Europe's strict laws were created in order to try to prevent such a tragic misuse of personal data happening again. Recorded 2 May 2019

In the third of the Data Protection Teabreak podcasts, Deputy Data Protection Commissioner Rachel Masterton and Chief Operating Officer Tim Loveridge discuss the end of transition. Most aspects of our local Law came into force on 25 May 2018, on the same day as the EU’s General Data Protection Regulation (GDPR). However, organisations in Guernsey had an additional year long transition period before they had to comply with the more complex aspects of our local Law. After the end of the transition period in May 2019, all organisations must comply with all aspects of the law, and the rest of their legal responsibilities defined within it. Rachel and Tim talk through what the end of this transition period means and the responsibilities of controllers, Data Protection Impact Assessments, data portability and consent. The ODPA’s Plain English Guide is available online and helps organisations understand what they need to do in order to comply with the law. https://odpa.gg/wp-content/uploads/15641-ODPA-B2B-Brochure-AW-digital.pdf Recorded on: 30 April 2019

In the second of the Data Protection Teabreak podcasts, Data Protection Commissioner Emma Martins and Chief Operating Officer Tim Loveridge discuss the ways in which the ODPA plans to engage with the community and hopefully reduce data breaches. The ODPA held its first open public consultation session on 10 April 2019 to find out what a selection of people from the local community thought it should offer as part of its events and communications programme. Tim and Emma discuss how prediction and prevention are key to ensuring data protection laws are followed willingly with detection of breaches and enforcement as the next steps and talk about their future events programme. Anyone who wishes to take part in the public consultation can visit www.odpa.gg/events-consultation to review the proposed events programme and send their feedback by 10 May 2019. Recorded on: 11 April 2019

What is data protection and why should you care – is it all just a storm in a tea cup? The team at The Bailiwick of Guernsey’s Office of the Data Protection Authority (ODPA) know that it affects us all and to help us understand why we should care are producing a series of podcasts tackling relevant issues in a friendly, informative format, perfect for over a cup of tea. The new ‘Data Protection TeaBreak’ series features staff from the ODPA discussing a range of issues, including what data is, why it is important and how to think about it sustainably. This first episode features the ODPA’s Rachel Masterton and Tim Loveridge discussing some of the background to data protection regulation and aspects of Guernsey’s local law compared to the EU General Data Protection Regulation (GDPR). They talk about issues like consent and accountability and of course Brexit gets a mention. Recorded on: 26 March 2019