Asset 1
Asset 1
Asset 1

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant
Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 18 Sep, 2020

Data Strategy, GDPR, Privacy, Test

What Comes After The Privacy Shield?

By now, I hope you've had a chance to review the white paper EU-US Privacy Shield And Brexit and watch the panel discussion on the topic of the demise of the EU-US Privacy Shield. If not, please do so now and come back when you're ready. 😊

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 04 Dec, 2019

Data Strategy, GDPR, Privacy

Data Protection And The Use Of A CRM

This paper is intended to provide guidance, from the perspective of the DPO, in the appropriate governance of Personal

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 04 Jun, 2019

Data Strategy, GDPR

Understanding Data Risk

The more I think about the risks associated with processing business-sensitive, personal or special category data, the

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 21 May, 2019

Data Strategy, Data Science & Analytics

Chaucer Report: Brexit Briefing

Keeping up with everything Brexit related is overwhelming to say the least – are we

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 07 Jan, 2019

Data Strategy, GDPR, Privacy

Are you ready to start building your Privacy Operations Centre (POC)?

It’s January 2019, and it’s been nearly three years since GDPR impinged on the consciousness of privacy and data

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 27 Dec, 2018

Data Strategy, GDPR, Privacy

Data Protection Strategy for 2019-2020

You’ve reached the end of 2018 having successfully implemented your GDPR programme – but what’s next for

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 03 Dec, 2018

Data Strategy, Privacy

Webinar: UK Energy Sector Data Protection Concerns

The General Data Protection Regulation (GDPR) continues to have an impact on data protection and privacy requirements

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 29 Oct, 2018

Data Strategy, Privacy

UK Energy Sector: Data Protection Concerns

In this paper, we will consider what special concerns are faced here in the UK by startups and challengers, especially (but not exclusively) to those in the Energy Sector.

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 12 Sep, 2018

Change Management, Data Strategy, GDPR

New Rules for Clinical Trials in France

A look at the new rules applicable for clinical trials in

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 26 Jul, 2018

Data Strategy, GDPR

Crypto-currencies and GDPR

Once the sole province of cryptographers and mathematics geeks, crypto-currencies and the underlying blockchain

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 25 Jul, 2018

Data Strategy, GDPR

DPbDD: Data Protection by Design and Default

GDPR Article 25: Data Protection by design and by default – what does it all

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 02 Jul, 2018

Data Strategy, GDPR

Dealing with Data Breaches under GDPR

There are at least three types of data breaches, which are not mutually exclusive: Breach of Confidentiality, Breach of Integrity and Breach of

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 02 Jul, 2018

Data Strategy, GDPR

ICO Audit Readiness Preparation

In June 2018, the UK Information Commissioner’s Office issued new guidance around the process they use to conduct a

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 08 Jun, 2018

Data Strategy, GDPR, Privacy

Priority of DPA18 over GDPR & the challenge of Brexit

While the Data Protection Act (2018) is the current law of the UK and will remain so after Brexit, it is necessarily

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.

Blog 01 Jun, 2018

Data Strategy, Privacy

Data Protection Officer Services: Pharmacy & Health Care

Pharmacy and health care industry bodies lost their fight earlier this month to gain an exemption from requiring a Data

Paul Gillingwater MBA, CISSP, CISM, RHCE

Paul Gillingwater MBA, CISSP, CISM, RHCE

Management Consultant

Paul Gillingwater GDPR, ISO27001, PCI/DSS, GRC, DPA18

Paul is a Managing Principal Consultant and registered DPO at Chaucer who has worked for more than 30 years as a cyber security and risk specialist and advisor to businesses, government and non-profits with their governance, regulatory and compliance requirements. Over the past five years he has focused on UK & EU data protection and is a passionate advocate of online privacy rights education.