Robert Bateman

Robert Bateman

Post-graduate law degree, CIPP/E from the International Association of Privacy Professionals (IAPP). Privacy and Data Protection Research Writer at TermsFeed.

Author

Robert is a freelance writer covering privacy, data protection, security, and AI. He is a respected voice on privacy and has covered been writing, researching, and leading conversations in the field since 2017. Throughout his career, Robert has interviewed some of the leading figures in privacy, including Max Schrems and Johnny Ryan. He has worked with dozens of high-profile privacy professionals and campaigners and has written about almost every aspect of data protection. Robert earned a post-graduate law degree in 2019 and a CIPP/E from the International Association of Privacy Professionals (IAPP) in 2021. His 2019 research on the compatibility of the UK's "immigration exemption" in the Data Protection Act 2018 and the European Convention on Human Rights (ECHR) won the DMH Stallard Prize for Best Project.

Vendor Management for GDPR: How to Audit Your Third-Party Tools

Vendor Management for GDPR: How to Audit Your Third-Party Tools

Organizations that rely on third-party tools to handle personal data should audit vendors to meet the European Union's (EU) General Data Protection Regulation (GDPR) requirements. This article explains what the GDPR is, why organizations are liable for vendor noncompliance, and how to conduct a GDPR vendor audit to reduce compliance risk. What...

Transfer Impact Assessment (TIA)

Transfer Impact Assessment (TIA)

The EU General Data Protection Regulation (GDPR) imposes strict rules on transferring personal data out of the European Economic Area (EEA). Before you make an international data transfer by sharing personal data with another organization outside the EEA, you must ensure that the organization can protect the data to EU-equivalent standards. A...

GDPR for Businesses

GDPR for Businesses

A clear introduction to GDPR for companies that collect or process EU personal data. Covers core principles, legal bases, data subject rights, and compliance responsibilities, with practical steps to help businesses meet GDPR requirements confidently.

Why You Need a Social Media Policy

Why You Need a Social Media Policy

Social media has opened up new, highly effective forms of marketing. Your business can derive significant value from endorsements made by social media personalities, bloggers, and affiliate marketers. But this type of marketing is subject to considerable regulatory oversight. Following a spate of recent warnings, the Federal Trade Commission (FTC) is...

Illinois Biometric Information Privacy Act

Illinois Biometric Information Privacy Act

The Illinois Biometric Information Privacy Act (BIPA) regulates how companies collect, store, use, and share biometric information. In the past few years, several companies have been taken to court for allegedly violating the BIPA. The Illinois courts treat this law very seriously and are prepared to enforce it against non-Illinois companies. In...

When Does the GDPR Not Apply?

When Does the GDPR Not Apply?

The EU General Data Protection Regulation (GDPR) affects millions of businesses. The GDPR is wide-reaching in many different ways: It applies to companies all over the world It covers individual people, charities, and businesses of any size It's relevant to a huge range of situations Because the GDPR is so broad, there is some...