Remove category workplace-privacy
Remove Data Remove GDPR Remove Government
article thumbnail

ISO 27001 and Physical Security

IT Governance

However, physical security is also an important aspect of information and data security. Matthew Peers, one of our GRC (governance, risk and compliance) consultants, helps organisations implement the Standard and prepare for ISO 27001 certification. I’d say that the separate category just filters out those controls better.

article thumbnail

FRANCE: ONE MORE STEP TO ENSURE CONSISTENCY OF THE NEW FRENCH DATA PROTECTION LAW

DLA Piper Privacy Matters

On 12 December 2018, the French Government issued an ordinance [1] finalizing, at the legislative level [2] , the alignment of the French Data Protection Law (“FDPL”) with the General Data Protection Regulation [3] (“GDPR”) and the Directive 2016/680 [4]. Article 32 of the French Law No.

GDPR 49
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

DPIAs for retail and hospitality 

IT Governance

Although DPIAs (data protection impact assessments) are not a new concept, the GDPR (General Data Protection Regulation) now mandates them under certain circumstances. The primary aim is to reduce the possible harm to the data subject. A DPIA assesses risk. All decisions should be recorded and signed off.

Retail 63
article thumbnail

European Parliament Agrees on Position on the AI Act

Hunton Privacy

Foundation model,” which means an “AI model that is trained on broad data at scale, is designed for generality of output, and can be adapted to a wide range of distinctive tasks.” Providers of foundation models are now subject to a number of specific obligations under the AI Act. Carry out the Fundamental Rights Impact Assessment (see below).

Risk 55