GDPR and Marketing - Information Management Today

CIPL Publishes White Paper on the Interplay Between the Draft EU Digital Markets Act and the GDPR

Hunton Privacy

DECEMBER 16, 2021

On December 6, 2021, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth LLP published a white paper on “ Bridging the DMA and the GDPR – Comments by the Centre for Information Policy Leadership on the Data Protection Implications of the Draft Digital Markets Act ” (the “White Paper”).

Paper

Paper GDPR Marketing Compliance

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Even the world’s biggest businesses are not free from GDPR woes. Many businesses find it hard to implement GDPR requirements because the law is not only complex but also leaves a lot up to discretion.

GDPR

GDPR Compliance Personal data Privacy

EU Data Governance Act – Edging Closer to a European Single Market for Data

Data Matters

APRIL 27, 2022

Some of the key objectives of the new legislation include enabling the re-use of certain categories of protected public sector data and making it easier and safer for citizens and businesses to share their data with relevant stakeholders. The DGA is part of the European Commission’s broader digital and data strategy. Main pillars.

Marketing

Marketing Government Personal data Artificial Intelligence

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

List of mandatory documents required by the GDPR

IT Governance

JULY 31, 2019

The documentation of processing activities is a new legal requirement under the EU GDPR (General Data Protection Regulation). Documenting your processing activities can also support good data governance, and help you to demonstrate your compliance with other aspects of the GDPR. Personal Data Protection Policy (Article 24).

GDPR

GDPR Data breaches Personal data Compliance

How to comply with Article 30 of the GDPR

IT Governance

JUNE 21, 2018

Article 30 of the EU General Data Protection Regulation (GDPR) sets out what exactly organisations need to document in order to comply with the Regulation. One key part of this record-keeping activity is to document the category of individuals (employees, customers, etc.) post, telephone, internal/external). Formats (e.g.

GDPR

GDPR Personal data Risk Cloud

EDPB Publishes Contribution to the Evaluation and Review of the GDPR

Hunton Privacy

MARCH 4, 2020

Article 97 of the GDPR requires the European Commission to submit, by May 25, 2020, and every four years thereafter, a report on the evaluation and review of the GDPR to the European Parliament and to the Council of the EU. Key takeaways and statistics from the Contribution include: International Data Transfer Tools.

GDPR

GDPR Personal data Data breaches Communications

European Commission Releases First Report on Evaluation of GDPR

Hunton Privacy

JUNE 24, 2020

On June 24, 2020, the European Commission (“the Commission”) submitted its first report on the evaluation and review of the EU General Data Protection Regulation (“GDPR”) to the European Parliament and Council. The report is required under Article 97 of the GDPR and will be produced at four year intervals going forward. Enforcement.

GDPR

GDPR Artificial Intelligence Blockchain Personal data

Why risk assessments are essential for GDPR compliance

IT Governance

OCTOBER 15, 2019

Any organisation that’s required to comply with the GDPR (General Data Protection Regulation) must conduct regular risk assessments. However, the GDPR is clear that data is also vulnerable to accidental or unlawful destruction, loss or disclosure. The GDPR risk assessment methodology. Streamlined and accurate.

GDPR

GDPR Risk Compliance Personal data

ITALY: Data Protection law integrating the GDPR in place

DLA Piper Privacy Matters

SEPTEMBER 10, 2018

Italian privacy law integrating the GDPR is finally in place, but a number of provisions remain unclear, but need immediate action. The Italian Privacy Code changes after the GDPR. The result is a very confusing text which inevitably cannot be 100% aligned to the GDPR and might contain mistakes.

GDPR

GDPR Privacy Compliance Marketing

EU Regulatory Data Protection: Many pieces to the regulatory framework puzzle

DLA Piper Privacy Matters

JANUARY 26, 2022

With the General Data Protection Regulation (GDPR), adopted in 2016, the EU has created a solid framework for the protection of personal data in line with the EU Charter of Fundamental Rights. GDPR as a baseline for the protection of personal data. the proposed Digital Markets Act. By: Heidi Waem , Simon Verschaeve.

Personal data

Personal data GDPR Computer and Electronics Artificial Intelligence

Everteam’s InfoGov Strategy Validated by an Increasing Number of Market Entrants

Everteam

DECEMBER 31, 2019

Enhanced autoclassification, including tuning features like a Machine Learning Training Set user interface, a process transparency panel to highlight why a category was recommended by the system, suggestion and auto-validation modes for greater automation levels, and more.

Marketing

Marketing Information governance Government Metadata

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. Specific categories defined as personal information include.

GDPR

GDPR Privacy Sales Data breaches

Italy: Privacy law integrating the GDPR adopted, what to do?

DLA Piper Privacy Matters

MAY 14, 2018

The Italian privacy law integrating the GDPR has been finalized by the Board of Ministers, unveiling unexpected surprises a few days before the 25th of May 2018. Below are my top 5 derogations to the GDPR provided by the Italian privacy law: 1. Criminal sanctions for privacy breaches confirmed.

GDPR

GDPR Privacy Systems administration Compliance

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR). The GDPR and CCPA take different approaches to defining the types of entities that must comply with the law.

GDPR

GDPR Privacy Personal data Sales

GDPR Italian Implementing Decree Has Been Published

HL Chronicle of Data Protection

SEPTEMBER 14, 2018

101 of 10 August 2018 (the “Decree”) for the national implementation of General Data Protection Regulation (EU) 2016/679 (the “GDPR”) has been published in the Official Journal. Below, a brief summary of the most relevant provisions: PROVISIONS WHICH INTEGRATE THE GDPR. On 4 September, the Legislative Decree no.

GDPR

GDPR Personal data Privacy Communications

EDPB Opinion on UK Adequacy: Strong Alignment but Challenges Remain

DLA Piper Privacy Matters

APRIL 19, 2021

The GDPR imposes restrictions on the transfer of personal data to a ‘third country’ unless that country benefits from (i) an adequacy decision; (ii) appropriate safeguards (e.g. standard contractual clauses ( SCCs )); or (iii) one of the limited exceptions under Article 49 GDPR. adequacy decision. Background. EDPB Opinions.

Personal data

Personal data GDPR Access Marketing

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. Specific categories defined as personal information include.

GDPR

GDPR Privacy Sales Data breaches

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR). The GDPR and CCPA take different approaches to defining the types of entities that must comply with the law.

GDPR

GDPR Privacy Personal data Sales

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR). The GDPR and CCPA take different approaches to defining the types of entities that must comply with the law.

GDPR

GDPR Privacy Personal data Sales

EU: New EDPB Guidelines on the territorial scope of the GDPR

DLA Piper Privacy Matters

NOVEMBER 28, 2018

On 26 November 2018, the WP29’s successor, the European Data Protection Board (EDPB) published, Guidelines on the territorial scope of the GDPR (Art. By the DLA Piper EU Data Protection Team. The proposed Guidelines are open for public consultation until 18 January 2019. It uses a data processor established in the EU.

GDPR

GDPR Personal data Sales Communications

ITALY: New GDPR Guidelines from the Italian data protection authority

DLA Piper Privacy Matters

APRIL 9, 2018

Italian companies can now rely on guidelines on how to comply with the European privacy regulation (GDPR) which unvail some interesting positions. . health related data that are now incorporated in the broader “ special ” category of data) and to the processing based on automated decision making, including profiling.

GDPR

GDPR Personal data Privacy Data breaches

CIPL and its GDPR Project Stakeholders Discuss DPOs and Risk under GDPR

Hunton Privacy

OCTOBER 5, 2016

In September, the Centre for Information Policy Leadership (“CIPL”) held its second GDPR Workshop in Paris as part of its two-year GDPR Implementation Project. There was a sense of shared responsibility for the successful and timely implementation of the GDPR between industry, DPAs, national governments and the EU Commission.

GDPR

GDPR Risk IT Compliance

Building cyber security careers

IT Governance

OCTOBER 21, 2021

The UK government’s Cyber security skills in the UK labour market 2021 report estimates that approximately 680,000 UK businesses (50% of those surveyed) have a basic skills gap. Information security is a broader category that protects all information assets, whether in hard copy or digital form. UK skills gap.

Security

Security Information Security GDPR Data Privacy

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

The wait is finally over—this Friday the European Union General Data Protection Regulation (GDPR) will come into force. However, the challenges of GDPR certainly don’t end on the date this law goes into implementation. Many of our clients ask us when and how they may be called upon to demonstrate compliance with the GDPR.

GDPR

GDPR Personal data Compliance Data breaches

Belgian DPA decision on IAB Transparency and Consent Framework

DLA Piper Privacy Matters

MARCH 2, 2022

In addition, the Belgian DPA’s Inspection Service (the body within the DPA which investigates potential violations of the GDPR) also carried out inspections on its own behalf. The Belgian DPA handled this case as lead supervisory authority drawing its jurisdiction from a combined reading of articles 56 and 4(23)b GDPR. 13 and 14 GDPR.

GDPR

GDPR Personal data IT Compliance

UK: Liability Limits for GDPR in commercial contracts – the law and recent trends

DLA Piper Privacy Matters

FEBRUARY 7, 2019

Given the potential financial exposure under GDPR, it is no surprise that a great deal of time is being spent working out how to allocate the risk and liability when negotiating commercial contracts. Before we look at limiting liability, we need to first consider how liability can arise in the first place in the context of GDPR.

GDPR

GDPR Risk Data breaches Personal data

One Year and Counting – a GDPR Checklist

Managing Your Information

MAY 25, 2017

With just one year to go until the GDPR applies, now is the time for action. With one year to go, it must be time for a GDPR checklist! It is essential to make a start on preparations for compliance with the GDPR as there is lots to do. Initial Preparations. Awareness raising is essential at all levels of the organisation.

GDPR

GDPR Personal data Compliance Data breaches

California’s GDPR? Sweeping California Privacy Ballot Initiative Could Bring Sea Change to U.S. Privacy Regulation and Enforcement

Data Matters

JUNE 26, 2018

Many see the law as having echoes of the new European General Data Protection Regulation (GDPR) that went into effect on May 25. any of the categories of information set forth above as they pertain to the minor children of the consumer. biometric data. geolocation data. psychometric information. biometric data. geolocation data.

Privacy

Privacy GDPR Sales Data breaches

Colorado AG Provides Insights on the Colorado Privacy Act Rulemaking Process

Hunton Privacy

APRIL 25, 2022

On April 12, 2022, Colorado Attorney General Phil Weiser made remarks at the International Association of Privacy Professionals Global Privacy Summit in Washington, D.C., where he invited stakeholders to provide informal public comments on the Colorado Privacy Act (“CPA”) rulemaking. The CPA was enacted in July 2021 as the third U.S.

Privacy

Privacy Personal data Sales Compliance

Appointing a data protection officer: A quick guide for schools and multi-academy trusts

IT Governance

MARCH 28, 2018

Whatever the size and setting of your school, the General Data Protection Regulation (GDPR) places high expectations on protecting the personal data of your data subjects, especially children. Sensitive personal data is a specific set of “special categories” that must be treated with extra security, such as genetic and biometric data.

GDPR

GDPR Personal data Compliance Data breaches

One Year and Counting – a GDPR Checklist

Managing Your Information

MAY 25, 2017

With just one year to go until the GDPR applies, now is the time for action. With one year to go, it must be time for a GDPR checklist! It is essential to make a start on preparations for compliance with the GDPR as there is lots to do. Initial Preparations. Awareness raising is essential at all levels of the organisation.

GDPR

GDPR Personal data Compliance Data breaches

UAE: Federal level data protection law enacted

DLA Piper Privacy Matters

DECEMBER 3, 2021

Reassuringly, the PDPL does not contain any major divergences from other well-known data protection regimes, including the GDPR. In this regard we expect it will be welcomed by local, regional and international businesses, in particular those that rely heavily upon personal data and international personal data flows.

Personal data

Personal data Data breaches GDPR Compliance

EU: Binding Corporate Rules are Generating Greater Interest

DLA Piper Privacy Matters

OCTOBER 16, 2019

The EU General Data Protection Regulation (“GDPR”) brought about stricter data protection rules, and increased penalties for breaching these rules. Article 47 GDPR lays down several criteria that BCRs need to meet in order to be approved by a supervisory authority. Following market leaders.

GDPR

GDPR Personal data Marketing Healthcare

EU data governance regulation – A wave of digital, regulatory and antitrust reform begins – Part Two

Data Protection Report

DECEMBER 17, 2020

On 25 November 2020, the European Commission ( EC ) published its proposed Data Governance Regulation (the DGR ), which will create a new legal framework to encourage the development of a European single market for data. What are the other excluded categories? This is part two of a series of three blog posts. Is consent required?

Government

Government Personal data GDPR Access

Executive Order on access to Americans’ bulk sensitive data and Attorney General proposed regulations – Part 2

Data Protection Report

MARCH 7, 2024

What is included in the special category of “government related data”? The proposed regulations would impose affirmative reporting obligations only “as conditions of certain categories of U.S. In its current posture, the ANPRM appears to be almost the opposite of GDPR. The compliance program suitable for a particular U.S.

Access

Access Military Compliance Personal data

EUROPE: Data protection regulators publish myth-busting guidance on machine learning

DLA Piper Privacy Matters

OCTOBER 10, 2022

For example, the ML system could be used to determine likely trends of categories of persons to default on loan agreements through the processing of financial default information. The General Data Protection Regulation (“ GDPR ”) requires that processing of personal data be proportionate to its purpose.

Personal data

Personal data GDPR Privacy Marketing

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

To be clear, this is not China’s own GDPR. Chinese authorities may provide personal information stored within China to overseas legal or enforcement authorities upon request, if and to the extent that there are international treaties or regulations in place to maintain fairness and for mutual benefit.

Data Privacy

Data Privacy Privacy Compliance Analytics

EU: EDPB ISSUES GUIDELINES ON PROCESSING OF PERSONAL DATA THROUGH VIDEO DEVICES

DLA Piper Privacy Matters

JULY 23, 2019

1. Application of the GDPR. Note however that if relying on consent, this must meet the GDPR standard. Entering a marked monitored area is unlikely constitute a statement or a clear affirmative action needed for consent, unless it meets the criteria of Articles 4 and 7 of the GDPR.

Personal data

Personal data GDPR Access Marketing

Security Outlook 2023: Cyber Warfare Expands Threats

eSecurity Planet

JANUARY 5, 2023

DigiCert predicts that 2023 will be “the Year of the SBOM,” as the software bill of materials framework moves from a federal requirement to the commercial market. “While most of the requirements are taking place at the federal level now, expect the SBOM to spread to commercial markets soon.” Similarly, the U.S.

Security

Security Ransomware Cybersecurity Privacy

7 key stages of the data protection impact assessment (DPIA)

IT Governance

SEPTEMBER 4, 2019

Under the GDPR, DPIAs (data protection impact assessments) are mandatory for data processing that is “likely to result in a high risk to the rights and freedoms of data subjects” Effectively a type of risk assessment, DPIAs assess how these high-risk processing activities could impact data subjects. The geographical area covered.

Personal data

Personal data GDPR Risk Access

What is the NIS2 Directive and How Does It Affect You?

Thales Cloud Protection & Licensing

NOVEMBER 28, 2022

Reduce inconsistencies in internal market resilience in industries currently covered by the directive by unifying cybersecurity capabilities. Entities under the purview of NIS2 will be divided into two categories: essential entities and important entities, with distinctions made based on the importance of the connected sectors.

IT

IT Encryption Compliance Cybersecurity

Considering Customer Data Management? Taking the Right Approach in 2020

Reltio

MARCH 18, 2020

To win in your markets, your organization needs to meet the increasingly demanding expectations of consumers, who want rich, connected and personalized experiences across channels. As teams look to pursue their customer data initiatives, they have traditionally focused on two key categories of offerings: Customer data platforms (CDPs).

MDM

MDM Analytics Customer Experience Marketing

FRANCE: A new phase in European privacy law enforcement – CNIL fined Google LLC 50 million euros!

DLA Piper Privacy Matters

JANUARY 24, 2019

On 21 January 2019, the restricted committee of the French Data Protection Supervisory Authority (CNIL) fined Google LLC 50 million euros for breaching GDPR for lack of transparency, inadequate information and lack of valid consent regarding personalized advertising. . Why was Google not compliant with GDPR?

Privacy

Privacy GDPR Personal data Compliance

Cloud Security Fundamentals: Understanding the Basics

eSecurity Planet

MAY 24, 2024

Understanding cloud security challenges and knowing the cloud security tools available in the market significantly contribute to enhanced cloud security. Identify applicable standards: Determine whether compliance requirements are applicable to your industry and geographical area, such as HIPAA, GDPR, or PCI DSS.

Cloud

Cloud Security Compliance Encryption

CIPL Publishes White Paper on the Interplay Between the Draft EU Digital Markets Act and the GDPR

How to implement the General Data Protection Regulation (GDPR)

Webinars

Trending Sources

EU Data Governance Act – Edging Closer to a European Single Market for Data

Webinars

List of mandatory documents required by the GDPR

How to comply with Article 30 of the GDPR

EDPB Publishes Contribution to the Evaluation and Review of the GDPR

European Commission Releases First Report on Evaluation of GDPR

Why risk assessments are essential for GDPR compliance

ITALY: Data Protection law integrating the GDPR in place

EU Regulatory Data Protection: Many pieces to the regulatory framework puzzle

Everteam’s InfoGov Strategy Validated by an Increasing Number of Market Entrants

California Enacts Broad Privacy Laws Modeled on GDPR

Italy: Privacy law integrating the GDPR adopted, what to do?

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

GDPR Italian Implementing Decree Has Been Published

EDPB Opinion on UK Adequacy: Strong Alignment but Challenges Remain

California Enacts Broad Privacy Protections Modeled on GDPR

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

EU: New EDPB Guidelines on the territorial scope of the GDPR

ITALY: New GDPR Guidelines from the Italian data protection authority

CIPL and its GDPR Project Stakeholders Discuss DPOs and Risk under GDPR

Building cyber security careers

GDPR is upon us: are you ready for what comes next?

Belgian DPA decision on IAB Transparency and Consent Framework

UK: Liability Limits for GDPR in commercial contracts – the law and recent trends

One Year and Counting – a GDPR Checklist

California’s GDPR? Sweeping California Privacy Ballot Initiative Could Bring Sea Change to U.S. Privacy Regulation and Enforcement

Colorado AG Provides Insights on the Colorado Privacy Act Rulemaking Process

Appointing a data protection officer: A quick guide for schools and multi-academy trusts

One Year and Counting – a GDPR Checklist

UAE: Federal level data protection law enacted

EU: Binding Corporate Rules are Generating Greater Interest

EU data governance regulation – A wave of digital, regulatory and antitrust reform begins – Part Two

Executive Order on access to Americans’ bulk sensitive data and Attorney General proposed regulations – Part 2

EUROPE: Data protection regulators publish myth-busting guidance on machine learning

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

EU: EDPB ISSUES GUIDELINES ON PROCESSING OF PERSONAL DATA THROUGH VIDEO DEVICES

Security Outlook 2023: Cyber Warfare Expands Threats

7 key stages of the data protection impact assessment (DPIA)

What is the NIS2 Directive and How Does It Affect You?

Considering Customer Data Management? Taking the Right Approach in 2020

FRANCE: A new phase in European privacy law enforcement – CNIL fined Google LLC 50 million euros!

Cloud Security Fundamentals: Understanding the Basics

Stay Connected