9 Jun 2026 · 4 min read
Data Protection Hero: We have read the privacy policy. It was as thrilling as you would expect.
A data protection or privacy policy that nobody reads is not functioning as an organisational measure. Under GDPR, companies need their workforce to actually understand and apply data protection principles - and a dense internal policy document, unread on an intranet, is not sufficient evidence of that.
