Category: Data Protection

5 steps to protect against AI cyber attacks

Protection against AI Cyber Attacks – Five practical steps, from the ICO, to help your organisation protect against AI threats.

The ICO say:

“Cyber criminals are increasingly using artificial intelligence (AI) to carry out attacks that are faster, more advanced and harder to detect. From AI-generated phishing emails that impersonate trusted contacts, to automated tools that scan for and exploit software vulnerabilities, the threat landscape is evolving rapidly.

With this scale and sophistication, cyber security must be a shared responsibility across every part of the economy. As the data protection regulator, we can provide clear expectations and practical support, but all organisations must take proactive steps to prepare themselves for emerging threats.”

Find out more about these 5 practical steps on the ICO website

Data Protection Complaints Procedures

All organisations are required to have a data protection complaints procedures in place before 19 June 2026

ICO Guidance here

GDPR PECR Fines 2025

Companies are still breaching the GDPR and PECR, Our training can help you avoid fines like these…. Read more

New Data Protection Course – understanding the DUAA

Data protection leads and senior managers need to understand The Data (Use and Access) Act 2025 to identify opportunities to change organisational policies and procedures to reduce GDPR PECR burden.

Our 3-hour course explores all.
https://concrew-training.co.uk/understanding-the-data-use-and-access-act

data protection training 2025

We work hard to reflect the latest breaking news on all our courses with informed predictions about what next is on the horizon. This certainly includes the Data Use and Access Bill which will impact both on PECR and the UK GDPR Data Protection Act.

Draft 2025 legislation already includes:-

New Digital Verification Services. Helping with things like moving house, pre-employment checks, and buying age restricted goods and services
Smart Data schemes, which is about the secure sharing of a customer’s data upon their request, with authorised third-party providers
Stronger information standards for IT suppliers in the health and social care system.
Broader definitions of consent for areas of scientific research, allowing legitimate researchers in commercial settings to make equal use of the UK data regime.
Modernising and strengthening the ICO. It will be transformed into a more modern regulatory structure, with a CEO, board and chair

More ICO checks on the way

ICO checks on cookie compliance in 2024 showed that 2 in 3 companies were not compliant with the legislation. A new extended review is on the way! Read more