GDPR Archive
Two years after the GDPR (General Data Protection Regulation) took effect, a lot of organisations remain unsure of how to approach compliance. This is especially apparent in B2B marketing, which deals with both business information and personal information. Employees often …
Under the GDPR (General Data Protection Regulation), your organisation’s compliance requirements depend on whether you are a data controller or data processor. A data controller is the person or organisation that determines how and why personal data is processed. A data processor is the person or …
A primary school in Gdańsk, Poland, has been fined PLN 20,000 (about €4,600) for collecting biometric data from its students without a legal basis. The GDPR (General Data Protection Regulation) defines biometric data as “personal data resulting from specific technical …
On 20 February 2020, Ireland’s DPC (Data Protection Commission) published its second Annual Report under the GDPR (General Data Protection Regulation), and the first covering a full calendar year of the Regulation.
The GDPR (General Data Protection Regulation) outlines six conditions under which organisations can process personal data. Contractual requirements, legal obligations, vital interests and tasks carried out in the public interest are all relatively self-explanatory, leaving consent and legitimate interest that …
The introduction of the GDPR (General Data Protection Regulation) requires all organisations within its scope to give data subjects the right to review the personal data being held on them. These requirements are broadly consistent with previous laws about personal data access requests, albeit more rigorous. However, …
We’ve come a long way since the panic and scepticism that accompanied the introduction of the GDPR (General Data Protection Regulation). Several high-profile fines and the continued warnings from regulators have led to a sharp uptick in the number of …
Chapter 2 of EU GDPR - An Implementation and Compliance Guide, give a breakdown of the GDPR’s six data processing principles. Read the extract here.
Chapter 13 of EU GDPR - An Implementation and Compliance Guide, breaks down compliance and managing personal data internationally. Read the extract here.
Personal data is at the heart of the GDPR (General Data Protection Regulation), but many people are still unsure exactly what ‘personal data’ refers to. There’s no definitive list of what is or isn’t personal data, so it all comes down …
