Privacy and Cybersecurity Law

JULY 22, 2020

Two years after the GDPR entered into force, the European Commission ( EC ) issued its first evaluation of the GDPR. Individuals are increasingly aware of the GDPR and their GDPR rights. The GDPR’s international data transfer toolbox. We have addressed the key points from the EC’s evaluation below.

GDPR 105

GDPR Privacy Personal data Compliance 105

DLA Piper Privacy Matters

JUNE 25, 2020

On 24 June, the European Commission published its evaluation report of the GDPR, just over two years after the GDPR become applicable. Commissioner Reynders further commented that the past two years have demonstrated the positive effects of the GDPR and that it is flexible tool, as the COVID-19 crisis has shown.

GDPR 98

GDPR IT Artificial Intelligence Personal data 98

Data Protection Report

SEPTEMBER 28, 2021

On 10 September 2021, the UK Government published its consultation paper on proposals to reform the UK’s data protection regime. Core elements of the GDPR: legal bases / conditions. On legitimate interests, the Government proposes disapplying the legitimate interest balancing test for certain activities.

Government 120

Government FOIA GDPR Compliance 120

IT Governance

OCTOBER 3, 2019

You might be surprised to learn that CCTV footage is subject to the GDPR (General Data Protection Regulation). Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant. Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant.

GDPR 110

GDPR Privacy Retail Personal data 110

AIIM

JANUARY 17, 2018

GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. What Do the GDPR and new Privacy Laws Mean for U.S. GDPR Compliance Starts with Data Discovery. GDPR Compliance Starts with Data Discovery. Compliance with GDPR is just a short five months away. The Privacy and Security Dichotomy.

GDPR 83

GDPR Compliance Data collection Privacy 83

IT Governance

FEBRUARY 13, 2020

Thanks to our GDPR Challenge E-learning Game , you can now reap the benefits of gamification when training your staff on their data protection obligations. Our GDPR Challenge E-learning Game contains a variety of data protection problems across a range of business scenarios. What you’ll learn by playing.

GDPR 91

GDPR Personal data Compliance Access 91

Collibra

FEBRUARY 25, 2021

The General Data Protection Regulation (GDPR) mandates businesses to make provisions for EU citizens to exercise their right to access and control their personal data, including the export of personal data outside the EU. But hurriedly planning for the GDPR is not the solution. Six phases of GDPR compliance.

GDPR 40

GDPR Compliance Personal data Data Privacy 40

Data Matters

JULY 8, 2019

Today we saw the ICO issue a notice of its intention to fine British Airways £183.39m for infringements of the GDPR – a record fine and the largest seen in the UK and the EU. This action by the ICO demonstrates that they are prepared to enforce the GDPR and levy significant fines.

GDPR 74

GDPR Privacy Data breaches Risk 74

Data Protector

AUGUST 17, 2020

One of the Government's core objectives throughout the Brexit negotiations has been to respect data protection rights, slash Brussels' red tape and allow the United Kingdom to be a competitive safe haven for businesses all over the world. The GDPR has had a profound impact on many organisations. I think it’s worth the effort, though.

Privacy 156

Privacy GDPR Personal data Computer and Electronics 156

AIIM

JULY 24, 2018

You might also be interested in: The Re-Permissioning Dilemma Under GDPR. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. What Do the GDPR and new Privacy Laws Mean for U.S.

GDPR 83

GDPR Compliance Privacy Data Privacy 83

Hunton Privacy

DECEMBER 1, 2020

million on Carrefour France and a fine of €800,000 on Carrefour Banque for various violations of the EU General Data Protection Regulation (“GDPR”) and Article 82 of the French Data Protection Act governing the use of cookies. GDPR and Cookie Violations. Background.

GDPR 91

GDPR Personal data Data collection Marketing 91

IT Governance

NOVEMBER 15, 2018

This blog was originally published before the GDPR took effect in May 2018. The EU GDPR (General Data Protection Regulation) gives individuals eight rights relating to their personal data. Organisations must let individuals know how they can exercise these rights, and meet requests promptly. Learn more about the GDPR.

GDPR 64

GDPR Personal data Access Communications 64

CILIP

NOVEMBER 16, 2021

Will reforms take the DP out of GDPR? A look at changes to data protection as the Government proposes a new risk management approach. The Government has published a consultation on reforms to data protection laws designed ?to It aims to change the UK GDPR regime from a ?box-ticking? s GDPR regime may imperil the UK?s

GDPR 52

GDPR Personal data Risk Government 52

Hunton Privacy

OCTOBER 2, 2018

Recently, the French Data Protection Authority (“CNIL”) published its initial assessment of the compatibility of blockchain technology with the EU General Data Protection Regulation (GDPR) and proposed concrete solutions for organizations wishing to use blockchain technology when implementing data processing activities. What is a Blockchain?

Blockchain 101

Blockchain GDPR Personal data Compliance 101

Data Protection Report

JUNE 9, 2022

Whereas the previous guidance set out general principles for when to impose fines under Article 83 GDPR, the new Guidelines provide a detailed five-step methodology for calculating a starting point for a fine and clarify how to determine the turnover of an undertaking in order to harmonise the approach across Member States.

GDPR 52

GDPR Compliance Personal data IT 52

The Last Watchdog

AUGUST 23, 2021

In that case, you must abide by the General Data Protection Regulation (GDPR), which imposes fines on some activities that are perfectly legal in the U.S. For instance, if you have employees in China and the EU, you’ll have to obtain Chinese government approval to provide data from China to EU authorities enforcing the GDPR.

Communications 223

Communications Cybersecurity GDPR Risk 223

IT Governance

NOVEMBER 12, 2018

Under the GDPR (General Data Protection Regulation) an organisation must not keep data for longer than it is needed. Article 5(1)(e) of the GDPR states: “1. There are no specific retention periods set under the GDPR, so it is up to your organisation to establish or identify them. Setting data retention periods.

GDPR 96

GDPR Personal data Paper Archiving 96

IT Governance

MAY 28, 2019

Last week, the GDPR (General Data Protection Regulation) turned one year old. GDPR compliance is an ongoing process and should be embedded by design in your data protection practices. The GDPR is as broad as possible when it comes to the security measures that organisations should implement.

GDPR 72

GDPR Compliance Personal data Risk 72

Data Matters

SEPTEMBER 30, 2020

government released a “White Paper” addressing how U.S. The White Paper indicates that companies facing the post- Schrems II world can approach compliance with the EU’s General Data Protection Regulation (“GDPR”) by preparing an assessment that “defends” their continued reliance on SCCs as a legitimate basis for continuing to transfer data.

Paper 128

Paper Government Security Privacy 128

IT Governance

NOVEMBER 23, 2018

It’s been six months since the GDPR (General Data Protection Regulation) took effect, and for many people fatigue has already set in: mention the GDPR and you’re likely to get little more than a weary shrug in response. True, the first GDPR fines are yet to be issued, but this should not be a cause for complacency. they say. “No

GDPR 68

GDPR Compliance Personal data Data breaches 68

Data Protector

AUGUST 17, 2020

If the UK receives an EU adequacy assessment, presumably the UK Government will simply anglicise the new EU SCCs and ask UK organisations to use the new versions for the Non-EU, UK - Rest of the World data flows. To expect them to commission a similar exercise so soon is cruel (and costly). It could take years to complete.

GDPR 120

GDPR Personal data Government Privacy 120

IT Governance

APRIL 3, 2018

The General Data Protection Regulation (GDPR)’s compliance deadline is looming. Below is a checklist of ten essential areas of the GDPR that you will need to review as part of your firm’s project. IT Governance is at the forefront of helping organisations globally to address the challenges of GDPR compliance.

GDPR 75

GDPR Compliance Personal data Risk 75

IT Governance

DECEMBER 18, 2017

Many organisations are struggling to fill a skills gap created by the EU General Data Protection Regulation (GDPR) and need staff with knowledge of the Regulation. IT Governance runs two levels of GDPR training courses across the UK to train staff on the Regulation, giving them the knowledge required to manage a GDPR compliance project.

GDPR 58

GDPR Personal data Compliance Data breaches 58

IT Governance

JULY 15, 2019

That shouldn’t be a surprise, given that the spike correlates with the GDPR (General Data Protection Regulation) taking effect. But why exactly has the GDPR caused everyone to rush off to find out what information organisations store on them? The GDPR has scrapped the £10 fee that organisations could charge to fulfil a DSAR.

GDPR 63

GDPR Access Data Privacy Personal data 63

IT Governance

NOVEMBER 8, 2018

This blog was originally published before the GDPR took effect in May 2018. This blog explains how to write a GDPR-compliant DSAR (data subject access request) procedure to ensure you meet your obligations as a data controller. Data subject access request procedures under the GDPR. Updated X November 2018.

GDPR 72

GDPR Access Personal data Compliance 72

IT Governance

JUNE 21, 2018

Article 30 of the EU General Data Protection Regulation (GDPR) sets out what exactly organisations need to document in order to comply with the Regulation. You might be surprised at how often your information is copied or transferred, which is why the GDPR makes it such a top priority. What does Article 30 require? Formats (e.g.

GDPR 64

GDPR Personal data Risk Cloud 64

IT Governance

APRIL 12, 2018

Compliance with the EU General Data Protection Regulation (GDPR) should be a priority for all EU organisations, and non-EU organisations that monitor the behaviour or offer goods and services to EU residents. The GDPR is far more extensive in scope and application than the current Data Protection Act.

GDPR 63

GDPR Compliance Personal data Risk 63

IT Governance

MARCH 12, 2018

Despite the General Data Protection Regulation (GDPR) coming into effect in less than three months, many healthcare organisations are yet to start developing a compliance programme. This checklist details nine practical steps that healthcare organisations should undertake in preparation for the GDPR.

GDPR 60

GDPR Compliance Data breaches Government 60

Collibra

MAY 5, 2020

Organizations may be concerned about negative press and potential fines from the enforcement of GDPR and CCPA. They need data governance. . They need data governance. What does data governance do? Governance delivers the context, relationships, lineage, and access data citizens need to make decisions around data.

Data Privacy 66

Data Privacy Government Privacy Compliance 66

HL Chronicle of Data Protection

SEPTEMBER 14, 2018

101 of 10 August 2018 (the “Decree”) for the national implementation of General Data Protection Regulation (EU) 2016/679 (the “GDPR”) has been published in the Official Journal. Also, the Decree governs the transition from the current to the future regime. On 4 September, the Legislative Decree no.

GDPR 40

GDPR Personal data Privacy Communications 40

AIIM

APRIL 13, 2021

He refers to the current attention on privacy matters as “privacy theater,” believing that apps are grabbing more of our data than they need to get the job done, and any assertion that these brands care about our personal data is largely a public relations exercise. and Jasen Hutchinson, Manager, Corporate Records Compliance, JEA.

Data Privacy 158

Data Privacy Privacy Artificial Intelligence Personal data 158

Hunton Privacy

DECEMBER 2, 2020

On November 25, 2020, the European Commission published its Proposal for a Regulation on European Data Governance (the “Data Governance Act”). The Data Governance Act is part of a set of measures announced in the 2020 European Strategy for Data , which is aimed at putting the EU at the forefront of the data empowered society.

Government 70

Government Personal data Compliance GDPR 70

Hunton Privacy

MARCH 17, 2017

On March 15, 2017, the French data protection authority (the “CNIL”) published a six step methodology and tools for businesses to prepare for the EU General Data Protection Regulation (“GDPR”) that will become applicable on May 25, 2018. This will allow them to be one step ahead and better organized to comply with the upcoming GDPR.

GDPR 75

GDPR Personal data Compliance Privacy 75

IT Governance

MAY 3, 2018

Although the EU General Data Protection Regulation (GDPR) deadline is only three weeks away, many organisations are still struggling to fill the cyber security skills gap and ensure that they are compliant. One way this awareness can be achieved is through staff training, and IT Governance can support you every step of the way.

GDPR 49

GDPR Personal data Compliance Data breaches 49

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. law, consumers and the marketplace have been comfortable with to date.

GDPR 79

GDPR Privacy Sales Data breaches 79

Gimmal

JUNE 10, 2022

Craig Carpenter and Dean Gonsowski , Gimmal’s CEO and CRO respectively, spoke with Ari about information discovery, migration, governance, and compliance, and how Gimmal helps organization address their biggest information governance challenges. It started as a GRC — governance risk and compliance — consulting firm.

Information governance 52

Information governance Government Privacy Risk 52

Hunton Privacy

MARCH 19, 2019

On March 12, 2019, the European Data Protection Board (“EDPB”) adopted an opinion on the interplay between the EU Directive on Privacy and Electronic Communications (“the ePrivacy Directive”) and the General Data Protection Regulation (“GDPR”) (the “Opinion”). Interplay between the ePrivacy Directive and the GDPR.

GDPR 45

GDPR Personal data Communications Government 45