(Updated to incorporate the DUAA 2025) Many organisations like to use staff photographs on their websites and ID cards. It makes a business feel more human and helps with on-site security. Nothing wrong with that, but as soon as you publish a person’s face or use it in an identification system, you trigger the UK GDPR, the Data Protection Act 2018, PECR and now the Data Use and Access Act 2025. These laws expect you to handle personal data properly, explain what you are doing

In an era where technology intertwines with our daily lives, the lines between professional and personal use of Workplace Computers often...