Data Protection & Privacy

HomeRegulation AreaData Protection & Privacy

Personal data breach – the essential guide

A personal data breach is a breach of security leading to accidental or unlawful destruction, loss, alteration, or unauthorised disclosure of, or access to,...

New SCCs from EU – the Definitive Guide

European Commission has, in the aftermath of the Schrems II ruling, approved a new set of Standard Contractual Clauses (SCCs) with safeguards to permit...

― Advertisement ―

Personal data breach – the essential guide

A personal data breach is a breach of security leading to accidental or unlawful destruction, loss, alteration, or unauthorised disclosure of, or access to,...

More News

Personal data breach – the essential guide

A personal data breach is a breach of security leading to accidental or unlawful destruction, loss, alteration, or unauthorised disclosure of, or access to,...

European Essential Guarantees Recommendations

In the wake of the Schrems II ruling, the EDPB has issued a recommendation on how to assess the legal framework of a third...

New SCCs from EU – the Definitive Guide

European Commission has, in the aftermath of the Schrems II ruling, approved a new set of Standard Contractual Clauses (SCCs) with safeguards to permit...

Explore more

Audit Powers of the Data Protection Authority: How to Prepare

The Data Protection Authorities (“DPA”) in the EU Member States have the mission to work for the protection of human rights regarding the processing...

How GDPR Affects Recruitment

GDPR affects recruitment by changing how personal data can be collected, stored and used. It will be more difficult to process large volumes of...

Anonymization and GDPR compliance; an overview

Anonymization of personal data is the process of encrypting or removing personally identifiable data from data sets so that the person can no longer...

Necessary under the GDPR

Use of personal data is necessary for the performance of a contract, and/or for the performance of a public task when used in a...

Facial recognition in school fined

A public school in Sweden filmed the students to register class attendance. The school is fined with EUR 20 000. The use of facial...

Cookie consent must be an active choice (5 requirements from CJEU)

A new ruling in the Planet49 case by the EU Court of Justice (CJEU) states that internet users must actively give their consent to...

Retention Policy – An overview

A retention policy is a guide to personnel on how to manage the lifecycle of information from collecting to destroying data. Therefore, the policy...

What You Need to Know About GDPR Fines

Learn what you need to know about GDPR fines, as it is one of the most talked-about aspects of the GDPR. Below is a...

Security of Personal Data

Security of Personal Data can be achieved when the data is protected by the appropriate controls in relation to the sensitivity of the data....

Data Processing Agreement Basics

This article sets out the data processing agreement basics of responsibilities between two parties that share personal data as a by-product of their collaboration,...

Individuals Right to Information

Individuals right to information is about how to collect and use their personal data. This right has led to several information-related obligations that companies...

What is a Personal Data Breach?

A personal data breach is a security risk that affects personal data in some way. If a breach occurs, the data controller has to...