Prop Tech and GDPR

You don’t know the half of it.

You might think much of the information flowing through your Prop Tech solutions –video, CCTV still images, virtual reality – wouldn’t count as processing personally identifiable data and couldn’t cause any GDPR liability on your part.

You’d be wrong.

  • “But we’re not storing or transmitting anything!” It doesn’t matter. A sensor (a camera, for example) can still record images of a person, time and location information, perhaps even visual evidence of any disabilities a person might have. This all counts as processing personal data – even if it’s fleeting and not being sent beyond the camera or stored anywhere!
  • “But we’re just the Prop Tech firm – our client is the Data Processor!” Not necessarily. Because of the level of control Prop Tech firms exercise over the data, the Prop Tech firm and the client often become joint Data Controllers and so share liability.
  • But nobody else comes into contact with the data apart from us! Really? So in an error-handling or repair scenario a third-party technician would not be able to log in to view and test the camera feed?

You see the issues here.

The question is, how long before your clients, partners and investors spot them too?

How Firesand can help you?

  • Dedicated, Prop Tech-focused security solutions for small, medium and large organisations
  • Managed and outsourced services - No security expertise or IT resource needed on your part
  • Extensive security experience Decades of security industry expertise with many high-profile global brands
  • Unrivalled security and data privacy qualifications, including SABSA, CCISO, CISSP, CIPP/E, and FIP (the latter one of only a handful in the UK

Don’t let complacency kill your compliance – and your business. Ask about our GDPR solutions for the Prop Tech sector today.


  • Firesand Cyber Security Training @ TechUK: places now available!

    TechUK, is hosting Firesand training to enable businesses to learn how to engineer cyber risk management into their solutions from design through to delivery
  • ISO 27001 industry recognition for information security management

    Firesand are thrilled to announce that we have achieved ISO 27001 certification for a second time – official recognition that we have continued to reach the industry standard, in information security management, a year on! The ISO (Inte ...
  • DPO

    Don’t want to pay £57.5k for a Data Protection Officer?  Here’s what to do.   Appointing a Data Protection Officer (DPO) to be responsible for managing an organisation’s day-to-day data compliance is a requirem ...