Compliance and Personal data - Information Management Today

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. However, GDPR compliance is not necessarily a straightforward matter.

GDPR

GDPR Compliance Personal data Privacy

India Releases Fourth Draft of Data Protection Bill

Hunton Privacy

NOVEMBER 22, 2022

reports that, on November 18, 2022, the Government of India (“Government”) released the long-awaited fourth draft of India’s proposed privacy law, now renamed the Digital Personal Data Protection Bill. There is no separate category of sensitive personal data. . Kochhar & Co. Terms and Application.

Personal data

Personal data Data breaches Government Compliance

Guest Post - Three Critical Steps for GDPR Compliance

AIIM

JANUARY 17, 2018

This is the eighth post in a series on privacy by Andrew Pery. You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. Step 1: Data Discovery.

GDPR

GDPR Compliance Data collection Privacy

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Yet many organizations still struggle to meet compliance requirements, and EU data protection authorities do not hesitate to hand out penalties. Irish regulators hit Meta with a EUR 1.2

GDPR

GDPR Compliance Personal data Privacy

CHINA: mobile apps remain a high privacy risk, and face stringent requirements

DLA Piper Privacy Matters

AUGUST 17, 2022

Mobile apps pervade all aspects of life in Mainland China, and in turn remain a high enforcement priority for data privacy regulators in China. For the past couple of years, operators of mobile apps in China have had to comply with over thirty additional, specific privacy compliance obligations (i.e. Minor’s Data.

Privacy

Privacy Risk Personal data Data collection

Colorado AG Publishes Draft Colorado Privacy Act Rules

Hunton Privacy

NOVEMBER 1, 2022

On October 1, 2022, the Colorado Attorney General’s Office submitted an initial draft of the Colorado Privacy Act Rules (“CPA Rules”), which will implement and enforce the Colorado Privacy Act (“CPA”). The proposed regulations, if adopted, would add certain significant new compliance obligations on businesses.

Privacy

Privacy Personal data Data collection Compliance

Why risk assessments are essential for GDPR compliance

IT Governance

OCTOBER 15, 2019

3 GDPR compliance tips for small businesses. GDPR: What’s the difference between personal data and sensitive data? There are also times when you must also complete a specific type of risk assessment, called a DPIA (data protection impact assessment) , to review the way you process personal data.

GDPR

GDPR Risk Compliance Personal data

Belgian Privacy Commission Issues Guidance on Data Protection Impact Assessments Under the GDPR

Data Matters

APRIL 5, 2018

On 28 February 2018, the Belgian Commission for the Protection of Privacy (the “Privacy Commission”) published a recommendation setting out its approach to Data Protection Impact Assessments (“DPIAs”), and in doing so published a “White List” and a “Black List” of processing operations, pursuant to the General Data Protection Regulation (“GDPR”).

GDPR

GDPR Privacy Personal data Education

How to Achieve Compliance with India’s Personal Data Protection Bill

Thales Cloud Protection & Licensing

JANUARY 16, 2020

Objectives of the Personal Data Protection Bill. Many privacy professionals consider the European Union’s General Data Protection Regulation (GDPR), which took effect in May 2018, as the cornerstone of privacy regulation. GDPR is harmonizing data protection and privacy requirements across the EU.

Personal data

Personal data Compliance Data breaches GDPR

UK ICO Publishes First Two Reports from its Data Protection Sandbox Pilot

Hunton Privacy

JULY 28, 2020

The ICO introduced the Regulatory Sandbox service with the goal of demonstrating that data protection can be combined with real world innovative solutions. The Beta phase of the Regulatory Sandbox was launched in September 2019 as a pilot and involves the assessment of ten products and services that use personal data in innovative ways.

IT

IT GDPR Personal data Compliance

5 Topics CCPA-Compliant Privacy Awareness Training Needs to Cover

KnowBe4

SEPTEMBER 16, 2019

Employees handling the sensitive data of California residents need to know this stuff; the California Consumer Privacy Act says so. The California Consumer Privacy Act (CCPA) is set to take effect on January 1, 2020. That said, here’s a quick overview of five aspects of the CCPA that compliance training needs to cover.

Privacy

Privacy Personal data Compliance Data collection

BELGIUM: Belgian DPA reveals its strategy for the next 5 years.

DLA Piper Privacy Matters

FEBRUARY 11, 2020

The DPA will be especially focussing on enhancing GDPR compliance in the following industry sectors: Telecom and media sector , due to the large amount of data they process. Adequate security and the re-use of data are of special importance to the BDPA; Public authorities , due to the large amount of (sensitive) data they process.

IT

IT GDPR Compliance Personal data

Appointing a data protection officer: A quick guide for schools and multi-academy trusts

IT Governance

MARCH 28, 2018

Whatever the size and setting of your school, the General Data Protection Regulation (GDPR) places high expectations on protecting the personal data of your data subjects, especially children. They are the point of contact for data subjects and the Information Commissioner’s Office. What is a DPO?

GDPR

GDPR Personal data Compliance Data breaches

UK ICO Releases Draft Direct Marketing Code of Practice for Public Consultation

Data Matters

FEBRUARY 10, 2020

Summarised below are the key takeaways from the Draft Code: Service messages: According to the Draft Code, consent is not required under the Privacy and Electronic Communications Regulation ( PECR ) where an organisation sends service or operational messages to individuals (e.g.,

Marketing

Marketing GDPR Personal data Communications

GDPR Italian Implementing Decree Has Been Published

HL Chronicle of Data Protection

SEPTEMBER 14, 2018

101 of 10 August 2018 (the “Decree”) for the national implementation of General Data Protection Regulation (EU) 2016/679 (the “GDPR”) has been published in the Official Journal. The provisions of the Privacy Code adopted to implement the e-Privacy Directive will of course remain in force.

GDPR

GDPR Personal data Privacy Communications

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

Data Protection Report

JUNE 29, 2018

On June 28, 2018, California lawmakers enacted the California Consumer Privacy Act of 2018 (the “CCPA”) a sweeping, GDPR-like privacy law which is intended to give California consumers more control over how businesses collect and use their data. Consumer access and data portability rights. Right to opt in for children.

Privacy

Privacy GDPR Personal data Risk

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

Data Protection Report

JUNE 29, 2018

On June 28, 2018, California lawmakers enacted the California Consumer Privacy Act of 2018 (the “CCPA”) a sweeping, GDPR-like privacy law which is intended to give California consumers more control over how businesses collect and use their data. Consumer Access and Data Portability Rights. Right to Opt In for Children.

Privacy

Privacy GDPR Personal data Risk

Belgium: DPA imposes fine on provider “pink boxes”: free products vs. free consent and other interesting take-aways

DLA Piper Privacy Matters

FEBRUARY 4, 2021

Family service, however, also licenses and sells personal data of these mothers (and their children – according to the BDPA’s interpretation) to its business partners for direct marketing purposes. Lack of transparency on selling/licensing personal data.

Personal data

Personal data GDPR Marketing IT

7 key stages of the data protection impact assessment (DPIA)

IT Governance

SEPTEMBER 4, 2019

2 ) Large-scale use of sensitive data : “(b) processing on a large scale of special categories of data referred to in Article 9(1), or of personal data relating to criminal convictions and offences referred to in Article 10”. The nature of the processing is what you plan to do with the personal data.

Personal data

Personal data GDPR Risk Access

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

The wait is finally over—this Friday the European Union General Data Protection Regulation (GDPR) will come into force. For many readers of this post, a huge amount of work will have been done in recent months in building up to compliance with the new regime. What do we expect in terms of enforcement priorities?

GDPR

GDPR Personal data Compliance Data breaches

UK’s Draft GDPR Implementation Law: The Starting Point

HL Chronicle of Data Protection

SEPTEMBER 27, 2017

Sensitive personal data. Schedule 1 of the bill contains the conditions for the processing of special categories of personal data and personal data relating to criminal convictions and offences. This article first published on IAPP’s Privacy Tracker. after Brexit. Criminal offenses.

GDPR

GDPR Personal data Government Privacy

One Year and Counting – a GDPR Checklist

Managing Your Information

MAY 25, 2017

It is essential to make a start on preparations for compliance with the GDPR as there is lots to do. Identify the personal data that you hold. You should also identify information falling within the Special Categories (Article 9) or data relating to criminal convictions and offences (Article 10).

GDPR

GDPR Personal data Compliance Data breaches

One Year and Counting – a GDPR Checklist

Managing Your Information

MAY 25, 2017

It is essential to make a start on preparations for compliance with the GDPR as there is lots to do. Identify the personal data that you hold. You should also identify information falling within the Special Categories (Article 9) or data relating to criminal convictions and offences (Article 10).

GDPR

GDPR Personal data Compliance Data breaches

Majority of CCPA Amendment Bills Passed by California Legislature

Hunton Privacy

SEPTEMBER 16, 2019

California marked the end of the 2019 legislative session this past Friday, September 13, by passing five out of six pending bills to amend the California Consumer Privacy Act of 2018 (“CCPA”). as part of CCPA compliance training). Code §§ 1798.130(a)(5)(A), (6)). Code § 1798.140(y)). Code § 1798.120(c)).

Sales

Sales B2B Communications Data breaches

ICO’s draft Age Appropriate Design Code could seriously impact processing of under 18’s personal data

Data Protection Report

MAY 16, 2019

Irrespective of whether an ISS is aimed or targeted at children, the standards of the Code must be met (to the extent applicable) unless: robust age verification mechanisms are applied (we will re-visit these later on) restricting access to adult users only; or. Users impacted. of the GDPR. 0 – 5: pre-literate and early literacy.

Personal data

Personal data Privacy GDPR Access

A Guide to CCPA Compliance and How the California Consumer Privacy Act Compares to GDPR

erwin

APRIL 18, 2019

California Consumer Privacy Act (CCPA) compliance shares many of the same requirements in the European Unions’ General Data Protection Regulation (GDPR). Data governance , thankfully, provides a framework for compliance with either or both – in addition to other regulatory mandates your organization may be subject to.

GDPR

GDPR Compliance Privacy Personal data

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

The new right to be forgotten will allow children to enjoy their childhood without having every personal event, achievement, failure, antic or prank that they posted online to be digitally recorded for ever more. Of course, as new rights like this are created, the Bill will ensure that they cannot be taken too far.

GDPR

GDPR Personal data Government IT

Belgian Privacy Commission Issues Recommendation on Data Protection Impact Assessment

Hunton Privacy

APRIL 20, 2018

The Belgian Privacy Commission (the “Belgian DPA”) recently released a Recommendation (in French and Dutch ) on Data Protection Impact Assessment (“DPIA”) and the prior consultation requirements under Articles 35 and 36 of the EU General Data Protection Regulation (“GDPR”) (the “Recommendation”). on which the data are saved.

Privacy

Privacy Personal data GDPR Risk

California Consumer Privacy Act: The Challenge Ahead — Key Terms in the CCPA

HL Chronicle of Data Protection

SEPTEMBER 14, 2018

This is the second installment in Hogan Lovells’ series on the California Consumer Privacy Act. Legislative history can speak volumes about those word choices, and the unique legislative history of the California Consumer Privacy Act of 2018 (CCPA) only highlights the importance of understanding the terms used in the act.

Privacy

Privacy Sales GDPR Personal data

UK: Data Protection Bill – Impact on employee data

DLA Piper Privacy Matters

OCTOBER 19, 2017

In this article we highlight the specific impact of the Bill on how employers process workforce data. Extra safeguards for special categories of data. The GDPR imposes strict controls on processing special categories of data. Our earlier blog entry provided an overview of the Bill.

GDPR

GDPR Compliance Personal data Government

Privacy as a “Fundamental Right” Clouds Smart Regulation

Data Matters

JULY 16, 2018

*Originally Published July 12, 2018 by Chambers and Partners Data Protection & Cyber Security 2018. There is a lot going on with privacy around the world. There ought to be a greater effort among policymakers to correlate what companies are required to do to protect privacy with actual, identified harms or abuses.

Privacy

Privacy Cloud Artificial Intelligence Data Privacy

Information Management Today

GDPR compliance checklist

India Releases Fourth Draft of Data Protection Bill

Trending Sources

Guest Post - Three Critical Steps for GDPR Compliance

How to implement the General Data Protection Regulation (GDPR)

CHINA: mobile apps remain a high privacy risk, and face stringent requirements

Colorado AG Publishes Draft Colorado Privacy Act Rules

Why risk assessments are essential for GDPR compliance

Belgian Privacy Commission Issues Guidance on Data Protection Impact Assessments Under the GDPR

How to Achieve Compliance with India’s Personal Data Protection Bill

UK ICO Publishes First Two Reports from its Data Protection Sandbox Pilot

5 Topics CCPA-Compliant Privacy Awareness Training Needs to Cover

BELGIUM: Belgian DPA reveals its strategy for the next 5 years.

Appointing a data protection officer: A quick guide for schools and multi-academy trusts

UK ICO Releases Draft Direct Marketing Code of Practice for Public Consultation

GDPR Italian Implementing Decree Has Been Published

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

Belgium: DPA imposes fine on provider “pink boxes”: free products vs. free consent and other interesting take-aways

7 key stages of the data protection impact assessment (DPIA)

GDPR is upon us: are you ready for what comes next?

UK’s Draft GDPR Implementation Law: The Starting Point

One Year and Counting – a GDPR Checklist

One Year and Counting – a GDPR Checklist

Majority of CCPA Amendment Bills Passed by California Legislature

ICO’s draft Age Appropriate Design Code could seriously impact processing of under 18’s personal data

A Guide to CCPA Compliance and How the California Consumer Privacy Act Compares to GDPR

The debate on the Data Protection Bill in the House of Lords

Belgian Privacy Commission Issues Recommendation on Data Protection Impact Assessment

California Consumer Privacy Act: The Challenge Ahead — Key Terms in the CCPA

UK: Data Protection Bill – Impact on employee data

Privacy as a “Fundamental Right” Clouds Smart Regulation

Stay Connected