Free Trial

THE PRIVACYPERFECT BLOG

Laurens Mommers | COO | PrivacyPerfect


Recent Posts

The Making Of: How we baked a new DPIA module

Jul 25, 2019 4:51:57 PM / by Laurens Mommers | COO | PrivacyPerfect

There’s a pile of cooking books on your desk. It’s approximately a meter high. It’s full of wonderful and complex recipes for all kinds of different cakes. They are written by the most famous patissiers of the continent. The problem is that you do not only have to read all the recipes, but you have to compile it into one consistent new recipe for a cake that does justice to the tradition of all these famous patissiers. What do you do?

Read More

Facial recognition and data protection: Will you collect happy points for good citizenship in 2025?

Jul 5, 2019 2:00:00 PM / by Laurens Mommers | COO | PrivacyPerfect posted in EU, Data Protection, Personal Data, Facial Recognition

Facial recognition is yet another exciting new technology that awaits its wider introduction in Europe. There are already various applications in the European Union, such as passport identification at airports, policing, and name tagging on social media platforms, such as Facebook. However, up until now, large scale deployment has not yet occurred. Why is that? And could it be related to the GDPR?

Read More

The future of data processing in driverless cars: the shift from connected to autonomous

Jun 26, 2019 11:00:00 AM / by Laurens Mommers | COO | PrivacyPerfect posted in USA, EU, Processing, GDPR Controller, GDPR Processor, Data Controlling, Connected Automobiles

The shift from ‘connected cars’ (cars communicating with their manufacturers, traffic lights, surrounding vehicles etc.) to ‘self-driving’, ‘driverless’ or ‘autonomous cars’, will impose new challenges to GDPR compliance. Business models and use cases of such cars will change, as will controllership, processors, purposes, and types of data being processed. In this article, we will discuss the repercussions and challenges to GDPR compliance in this paradigm shift.

Read More

Is the GDPR fulfilling its real purposes in the age of fake news?

Jun 11, 2019 3:00:00 PM / by Laurens Mommers | COO | PrivacyPerfect

One year after its commencing effect, we see a lot of overview articles highlighting what happened with GDPR in its first year. Loads of breaches, plenty of guidance, the first major GDPR fine issues by CNIL, panic, denial and still lots of fear, uncertainty and doubt. But what was the GDPR about in the end? The short answer can be easily found in the full name of the regulation.
Read More

EU GDPR fallout in five years’ time: Ten bold predictions

Apr 16, 2019 2:00:00 PM / by Laurens Mommers | COO | PrivacyPerfect posted in EU, Data Privacy, Data Protection, GDPR Fines, EEA, GDPR Summary, GDPR Predictions

Though obviously no-one can predict the future, it is great fun thinking of what will have happened to privacy regulation in five years' time. The EU GDPR has been an agenda-setting legal instrument but its effects are still only in their infancy.
Read More

Why data protection authorities do need to facilitate software companies

Oct 25, 2018 10:00:00 AM / by Laurens Mommers | COO | PrivacyPerfect posted in Data Protection, Software company, GDPR Authorities, GDPR For Tech Companies

Read More

How to cope with the vagueness of article 30 GDPR

Sep 17, 2018 10:00:00 AM / by Laurens Mommers | COO | PrivacyPerfect posted in EU, GDPR Compliance, Data Privacy, Data Protection, GDPR Explained, GDPR Software, Software company

The GDPR imposes many rights and obligations on organisations that require software support. Any software supplier will have to make decisions on how to interpret the GDPR and where GDPR compliance software or data processing is needed. Because of the countless vague concepts in the Regulation, suppliers will have different interpretations which of course can lead to a varied number of outcomes within the software.

Read More

Safeguarding your reputation under the GDPR

Sep 11, 2018 10:00:00 AM / by Laurens Mommers | COO | PrivacyPerfect posted in Data Protection, GDPR Explained, Reputation, GDPR Reputation

 

The fines usually attract the most attention when discussing the GDPR. Four percent of your worldwide annual turnover sounds scary - and ‘fear, uncertainty and doubt’ sell. But when we focus on the main risk of being noncompliant with the new privacy regulation, then the logical conclusion is that your reputation is what is at stake. So, how can you safeguard your organisation’s reputation in the field of personal data protection?

Read More

What should a data breach notification contain?

Jul 9, 2018 10:00:00 AM / by Laurens Mommers | COO | PrivacyPerfect posted in GDPR Compliance, Data Breach, Data Security, Data Transfer, Personal Data

Previously, I wrote a blog post (see here) on data breaches and where to report them, focusing on the notion of ‘lead supervisory authority’. In this blog post, I focus on the contents of data breach notifications in relation to the GDPR. It is important to notice that notifications might be to either of two stakeholders: the supervisory authority and/or the data subjects concerned (the ‘victims’ of the data breach). Using GDPR compliance

Read More

Can dynamic IP addresses constitute personal data?

Jun 26, 2018 10:00:00 AM / by Laurens Mommers | COO | PrivacyPerfect posted in Data Privacy, Data Protection, Dynamic IP Address, Personal Data

A debate has been going on for quite some years now about the question whether dynamic IP addresses constitute personal data in the sense of European data protection legislation. An IP address is the logical address of a node on the internet (be it a computer, a network device or a mobile device). Given the limited number of available IP addresses available under the 'old' but still widely used IPv4 standard, often a single

Read More