Events and GDPR - Information Management Today

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Even the world’s biggest businesses are not free from GDPR woes. Many businesses find it hard to implement GDPR requirements because the law is not only complex but also leaves a lot up to discretion.

GDPR

GDPR Compliance Personal data Privacy

Guest Post - Three Critical Steps for GDPR Compliance

AIIM

JANUARY 17, 2018

This is the eighth post in a series on privacy by Andrew Pery. You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. Step 2: Record of Processing Activities.

GDPR

GDPR Compliance Data collection Privacy

Why risk assessments are essential for GDPR compliance

IT Governance

OCTOBER 15, 2019

Any organisation that’s required to comply with the GDPR (General Data Protection Regulation) must conduct regular risk assessments. However, the GDPR is clear that data is also vulnerable to accidental or unlawful destruction, loss or disclosure. The GDPR risk assessment methodology. Get started with vsRisk.

GDPR

GDPR Risk Compliance Personal data

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). This legislation was enacted on an extraordinarily accelerated timeframe as part of compromise with the sponsor of a comparable privacy ballot initiative, which had qualified to be placed before state voters on Election Day in November 2018.

GDPR

GDPR Privacy Sales Data breaches

ITALY: Data Protection law integrating the GDPR in place

DLA Piper Privacy Matters

SEPTEMBER 10, 2018

Italian privacy law integrating the GDPR is finally in place, but a number of provisions remain unclear, but need immediate action. The Italian Privacy Code changes after the GDPR. The result is a very confusing text which inevitably cannot be 100% aligned to the GDPR and might contain mistakes.

GDPR

GDPR Privacy Compliance Marketing

GDPR – the facts and what it means for the retail sector

IT Governance

JUNE 25, 2018

We all know by now that, on 25 May 2018, the General Data Protection Regulation (GDPR) came into effect. The GDPR is not an IT issue. Despite the benefits of good data management, it was widely acknowledged that many organisations would not be GDPR-compliant on 25 May. GDPR c ompliance is not a choice .

Retail

Retail GDPR IT Compliance

The Impact of Data Protection Laws on Your Records Retention Schedule

ARMA International

APRIL 18, 2022

These records are typically organized by grouping them by function or department and then described as either an individual record or grouped together into a record category. Countries and organizations within the European Union (EU), must comply with the requirements of the General Data Protection Regulation (GDPR) 1.

Personal data

Personal data GDPR Privacy Records Management

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). This legislation was enacted on an extraordinarily accelerated timeframe as part of compromise with the sponsor of a comparable privacy ballot initiative, which had qualified to be placed before state voters on Election Day in November 2018.

GDPR

GDPR Privacy Sales Data breaches

France: The CNIL publishes a practical guide on Data Protection Officers

DLA Piper Privacy Matters

NOVEMBER 29, 2021

The guide is in line with the Article 29 Working Party Guidelines on Data Protection Officers (WP 243 rev 01) , but provides additional insights and practical guidance to organizations that designate a DPO in respect of GDPR and French data protection act requirements. Be the point of contact on GDPR issues.

GDPR

GDPR Compliance Personal data Communications

When are schools required to report personal data breaches?

IT Governance

NOVEMBER 17, 2020

Under the GDPR (General Data Protection Regulation) , all personal data breaches must be recorded by the organisation and there should be a clear and defined process for doing so. The ICO defines a personal data breach as any event that results in. What constitutes a personal data breach.

Personal data

Personal data Data breaches Data collection GDPR

French DPA Publishes Updated Data Protection Impact Assessment Guidance

Data Matters

JANUARY 17, 2019

health data) on a large scale or personal data relating to criminal convictions, or (iii) engage in a systematic monitoring of a publically accessible area on a large scale. The EDPB also requested refinement of references to DPIAs in the event of employee monitoring.

GDPR

GDPR Personal data Risk Privacy

California Privacy Law Overhaul – Proposition 24 Passes

Data Matters

NOVEMBER 4, 2020

The results are in, and California voters have approved the California Privacy Rights Act (CPRA) which was listed on the ballot as Proposition 24. Even so, with these and other new requirements, the CPRA does not go as far as some consumer privacy advocates had hoped it would.

Privacy

Privacy B2B Sales Data breaches

UAE: Federal level data protection law enacted

DLA Piper Privacy Matters

DECEMBER 3, 2021

Reassuringly, the PDPL does not contain any major divergences from other well-known data protection regimes, including the GDPR. International businesses with global privacy compliance programs should seek to expand those to cover the UAE and achieve some synergies. issue guidance and instructions in relation to the PDPL.

Personal data

Personal data Data breaches GDPR Compliance

ITALY: New GDPR Guidelines from the Italian data protection authority

DLA Piper Privacy Matters

APRIL 9, 2018

Italian companies can now rely on guidelines on how to comply with the European privacy regulation (GDPR) which unvail some interesting positions. . health related data that are now incorporated in the broader “ special ” category of data) and to the processing based on automated decision making, including profiling.

GDPR

GDPR Personal data Privacy Data breaches

What IG Professionals Should Know About the Internet of Bodies

ARMA International

FEBRUARY 21, 2020

Workplace safety, health monitoring, and convenience top the list of benefits. The devices can monitor, analyze, and alert to dangers in the workplace and can aid in health awareness and enhancement. In the ingestibles category are Bluetooth electronic pills that monitor the inner workings of the human body.

Computer and Electronics

Computer and Electronics Privacy Artificial Intelligence IoT

Why every organisation needs data protection impact assessments

IT Governance

NOVEMBER 23, 2018

They are a useful accountability tool: the results of a DPIA will help you demonstrate that you have taken the appropriate technical and organisational measures required by the GDPR (General Data Protection Regulation). Data controllers are responsible for conducting DPIAs as required by Article 35 of the GDPR.

GDPR

GDPR Personal data Risk Marketing

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

Rather than bringing substantial changes to the existing China data privacy framework, the PIPL helpfully consolidates and clarifies obligations on processing of personal information at a national law level. To be clear, this is not China’s own GDPR.

Data Privacy

Data Privacy Privacy Compliance Analytics

EUROPE: Data protection regulators publish myth-busting guidance on machine learning

DLA Piper Privacy Matters

OCTOBER 10, 2022

For example, the ML system could be used to determine likely trends of categories of persons to default on loan agreements through the processing of financial default information. In this article we elaborate on some of these clarifications in the context of a world of developing AI and data privacy frameworks.

Personal data

Personal data GDPR Privacy Marketing

European Commission Proposes Revised Standard Contractual Clauses

Data Matters

NOVEMBER 13, 2020

In relation to special categories of personal data (e.g., data concerning health) the data importer must agree to apply additional safeguards adapted to the specific nature of the data and the risks. The draft SCCs are intended to also satisfy the requirements of Article 28(3) of the GDPR (i.e.,

Personal data

Personal data GDPR Privacy Compliance

Focus on Google DeepMind under the GDPR’s Lens

HL Chronicle of Data Protection

SEPTEMBER 18, 2017

The investigation brings together some of the most potent and controversial issues in data privacy today; sensitive health information and its use by the public sector to develop solutions combined with innovative technology driven by a sophisticated global digital company. All About Testing.

GDPR

GDPR Personal data Privacy Data Privacy

FRANCE: ONE MORE STEP TO ENSURE CONSISTENCY OF THE NEW FRENCH DATA PROTECTION LAW

DLA Piper Privacy Matters

JANUARY 21, 2019

On 12 December 2018, the French Government issued an ordinance [1] finalizing, at the legislative level [2] , the alignment of the French Data Protection Law (“FDPL”) with the General Data Protection Regulation [3] (“GDPR”) and the Directive 2016/680 [4]. Following-up the adoption of the GDPR, the French Law No.

GDPR

GDPR Personal data Communications Government

FRANCE: THE FIRST CNIL STANDARD REGULATION FOR BIOMETRIC SYSTEMS IN THE WORKPLACE

DLA Piper Privacy Matters

APRIL 11, 2019

The CNIL reminds that the rules resulting from the Regulation do not exclude the application of the general obligations under the GDPR, notably regarding compliance with the general principles for processing personal data, data subject rights and international transfers. token or badge). access to nuclear plant or surgical suite).

Personal data

Personal data GDPR Access Compliance

Welcome to Relativity Fest 2019!: eDiscovery Trends

eDiscovery Daily

OCTOBER 20, 2019

Actually, it started yesterday, with a few events, including the Welcome Reception. These professionals are specializing in an area of expertise and validating that knowledge with certification(s) such as the CIPP US/EU for privacy, the GLEG or CISSP for security, or CEDS for those wanting to specialize in e-discovery and more.

e-Discovery

e-Discovery Data Privacy Education Privacy

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

The new right to be forgotten will allow children to enjoy their childhood without having every personal event, achievement, failure, antic or prank that they posted online to be digitally recorded for ever more. Of course, as new rights like this are created, the Bill will ensure that they cannot be taken too far.

GDPR

GDPR Personal data Government IT

The Burden of Privacy In Discovery

Data Matters

SEPTEMBER 29, 2021

With the proliferation of social media platforms and other new technologies has come a renewed legal focus on privacy. Could a party, for instance, decline to produce, review, or even collect certain types of data due to privacy concerns? But what about other contexts? In this essay, Robert D.

Privacy

Privacy e-Discovery Computer and Electronics e-Delivery

ICO’s draft Age Appropriate Design Code could seriously impact processing of under 18’s personal data

Data Protection Report

MAY 16, 2019

The ICO also specifically states that it is unlikely… that the commercial interests of an organisation will outweigh a child’s right to privacy. of the GDPR. However, this blanket application is mitigated by the different standards to be applied to five defined “Age Categories.”. Users impacted. 10-12: transition years.

Personal data

Personal data Privacy GDPR Access

DUBAI – DIFC Data Protection Law 2020

DLA Piper Privacy Matters

JUNE 4, 2020

The Updated Law builds upon the DIFC’s 2007 data protection law ( “Old Data Protection Law” ) and now includes concepts from the EU’s GDPR, as well as other laws from around the world, notably the California Consumer Privacy Act. For those familiar with the GDPR many of the key changes will not be surprising.

Personal data

Personal data GDPR Compliance Privacy

Part 3: OMG! Not another digital transformation article! Is it about effecting risk management and change management?

ARMA International

SEPTEMBER 27, 2021

This part also discusses managing CS risks such as ransomware, privacy, change management, and user adoption. Thus, common tools and techniques are risk matrices, risk registers, risk logs, risk breakdown structures, risk categories, Monte Carlo simulations, and sensitivity analyses. Jurisdiction and Privacy Data Risks.

Digital transformation

Digital transformation Risk IT Computer and Electronics

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Data Matters

MARCH 4, 2021

For over two and a half years, California has enjoyed the spotlight of having the most comprehensive data privacy law in the United States. The VCDPA, which will not enter into effect until January 1, 2023, borrows heavily from the California Consumer Privacy Act (CCPA) and the European Union (EU) General Data Protection Regulation (GDPR).

Personal data

Personal data GDPR Sales Privacy

Information Management Today

How to implement the General Data Protection Regulation (GDPR)

Guest Post - Three Critical Steps for GDPR Compliance

Webinars

Trending Sources

Why risk assessments are essential for GDPR compliance

Webinars

California Enacts Broad Privacy Laws Modeled on GDPR

ITALY: Data Protection law integrating the GDPR in place

GDPR – the facts and what it means for the retail sector

The Impact of Data Protection Laws on Your Records Retention Schedule

California Enacts Broad Privacy Protections Modeled on GDPR

France: The CNIL publishes a practical guide on Data Protection Officers

When are schools required to report personal data breaches?

French DPA Publishes Updated Data Protection Impact Assessment Guidance

California Privacy Law Overhaul – Proposition 24 Passes

UAE: Federal level data protection law enacted

ITALY: New GDPR Guidelines from the Italian data protection authority

What IG Professionals Should Know About the Internet of Bodies

Why every organisation needs data protection impact assessments

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

EUROPE: Data protection regulators publish myth-busting guidance on machine learning

European Commission Proposes Revised Standard Contractual Clauses

Focus on Google DeepMind under the GDPR’s Lens

FRANCE: ONE MORE STEP TO ENSURE CONSISTENCY OF THE NEW FRENCH DATA PROTECTION LAW

FRANCE: THE FIRST CNIL STANDARD REGULATION FOR BIOMETRIC SYSTEMS IN THE WORKPLACE

Welcome to Relativity Fest 2019!: eDiscovery Trends

The debate on the Data Protection Bill in the House of Lords

The Burden of Privacy In Discovery

ICO’s draft Age Appropriate Design Code could seriously impact processing of under 18’s personal data

DUBAI – DIFC Data Protection Law 2020

Part 3: OMG! Not another digital transformation article! Is it about effecting risk management and change management?

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Stay Connected