FREE UK and US shipping | Get the ebook free with your print copy when you select the "bundle" option | T&Cs apply

Data Protection Explained

How to Protect Data and Embed Privacy in Your Organization

Steve Wright

Protect critical data and build organizational trust with this practical guide to building a data protection programme for data, risk, cybersecurity and privacy professionals.

Publishing partner

EAN: 9781398629165

Edition: 1

Published: 03 Oct 2026

Format: 234 x 156

288 pages

FREE UK and US delivery

Bulk buying for your team?
Contact us for exclusive discounts!

About the book

Strengthen data protection, reduce enterprise risk and deliver confident, compliant decision making across your organization.

The Data Protection Handbook is a strategic guide for mid to senior data, risk and cybersecurity professionals who need proven tools for governing information, safeguarding reputation and enabling innovation at scale. Written by Steve Wright, an accomplished privacy leader with over thirty years' experience, this executive resource equips you to build informed, future-ready programmes that mitigate legal, operational and financial risk exposure while supporting growth.

Drawing on real-world examples from global organizations, this handbook provides the strategic models and structures required to elevate data protection from a compliance activity to a value-driving capability. You'll learn how to:

- Establish governance, culture and leadership alignment for enterprise-wide data protection
- Apply data risk frameworks and run DPIAs that inform strategic and financial decisions
- Strengthen breach response, third-party oversight and operational resilience
- Use emerging technologies, including AI, to enhance protection and deliver measurable results

With frameworks, checklists, sample policies and guidance you can apply immediately, The Data Protection Handbook helps leaders modernize their approach and deliver long-term organizational impact.

Themes include: data governance, enterprise risk, privacy strategy, regulatory compliance, AI-enabled protection, operational resilience, cybersecurity

About the authors

Steve Wright is an accomplished data protection and privacy professional with over thirty years' experience. He previously served as the Data Protection Officer at the Bank of England and John Lewis and as the Chief Privacy Officer for Unilever. He is the Interim Data Protection Officer for the Financial Services Compensation Scheme and is the Founder of PICCASO, a special interest group serving privacy, data protection and security professionals globally. He is based in London, UK.

Steve Wright

- Chapter - 01: Understanding data and privacy in the modern era;
- Chapter - 02: The data protection officer role - scope, mandate and accountability;
- Chapter - 03: Establishing governance and culture;
- Chapter - 04: Data discovery, inventories and mapping;
- Chapter - 05: Risk management and DPIAs;
- Chapter - 06: Policies, standards and procedures;
- Chapter - 07: Data subject rights in practice;
- Chapter - 08: Privacy by design and default;
- Chapter - 09: Incident response and breach management;
- Chapter - 10: Vendor and third-party risk management;
- Chapter - 11: Cross-border data transfer;
- Chapter - 12: Technology, AI and data protection;
- Chapter - 13: Monitoring, auditing and reporting;
- Chapter - 14: Training, awareness and culture change;
- Chapter - 15: The future of the DPO role;
- Chapter - 16: Conclusion