Remote working & Data security

Jul 23, 2020 10:22:00 AM / by The Trust Bridge posted in Data Security, remote work

Given the strange situation we all find ourselves in at the moment, with so many people suddenly
working from home for the first time, organizations have little time to prepare for the consequences that may arise from increased risk of cyber attacks and data breaches. All the data they have is not where it perhaps should be or protected to the same extent as it is normally. It is likely that many employees will continue to work from home for many months, if not forever.

Read More

Overcoming the challenges of conducting a DPIA

Jul 22, 2020 1:20:58 PM / by PrivacyPerfect posted in DPIA, Data Protection Impact Assessments

Carrying out a Data Protection Impact Assessment (DPIA) is often considered a challenging task by data protection professionals due to the complexity of the process, which often involves big and detailed projects, and relies on the involvement and support of other stakeholders within an organisation. Fortunately, there are several methods that can help make the performing of DPIAs easier, simpler, and more efficient. In this blog post, our privacy experts highlight the key steps that may help make the process painless.

Read More

PrivacyPerfect behaalt ISO 27001-certificering voor databeveiliging

Jul 17, 2020 10:28:03 AM / by PrivacyPerfect posted in ISO certification, ISO

PrivacyPerfect, leverancier van privacy compliance-oplossingen, heeft de ISO 27001-certificering voor informatiebeveiliging behaald. Hiermee toont PrivacyPerfect aan dat het beschikt over een solide managementsysteem voor databeveiliging en dat ook de software-oplossingen voldoen aan de strengste normen voor databeveiliging en de privacywetgeving. 

PrivacyPerfect wil een bijdrage leveren aan een digitale wereld waarin mensen erop kunnen vertrouwen dat bedrijven en overheden hun persoonsgegevens op een veilige manier verwerken. Daarom helpt het organisaties met software-modules en advies om onder meer de Algemene verordening gegevensbescherming (AVG) na te leven. Met het behalen van de ISO 27001-certificering bewijst PrivacyPerfect dat databeveiliging een integraal onderdeel is van zijn bedrijfsvoering, producten en dienstverlening.

“Als leverancier van privacy compliance-oplossingen is een gedegen bescherming van persoonsgegevens de basis van de belofte die wij doen aan onze klanten. We zijn dan ook trots dat we deze certificering hebben behaald en hiermee kunnen aantonen dat we als organisatie volledig compliant zijn met de AVG”, zegt Nicoline Matser, CEO van PrivacyPerfect.

Onder de AVG hebben organisaties meer verantwoordelijkheid gekregen om aan te tonen dat zij de juiste organisatorische en technische maatregelen hebben genomen om aan de privacywetgeving te voldoen. Om deze zogenaamde verantwoordingsplicht goed in te vullen, is een organisatiebrede strategie voor gegevensbescherming onmisbaar. De oplossingen die PrivacyPerfect hiervoor biedt worden inmiddels door meer dan 2000 gebruikers wereldwijd ingezet. 

Kans om reputatie te versterken

Read More

Healthcare institutions and GDPR compliance in a digital world

Jul 16, 2020 9:45:00 AM / by PrivacyPerfect posted in healthcare

Digital transformation is and has been the focus of many organisations in the last couple of years, including those of the healthcare sector. This shift brings with it new, additional aspects for all areas, a major one being data protection. In the healthcare sector, where a huge amount of sensitive personal data is being processed on a daily basis, protection of this data has to be of top priority, with strict procedures, access controls, and guidelines on privacy. As such, compliance with the GDPR, within digitized care and cure organisations, is crucial. Let’s take a look at how you can ensure compliance for your healthcare organisation without disrupting the efficiency of your work.

Read More

What the outcome of the upcoming ruling in Facebook Ireland vs Schrems can mean for your organisation and how to prepare for the 16th of July

Jul 8, 2020 8:30:00 AM / by PrivacyPerfect posted in Privacy Shield, International Data Transfer, Standard Contractual Clauses

In exactly one week, on the 16th of July, one of the most anticipated cases in data protection, case C-311/18 — Facebook Ireland versus Schrems — will be delivered by the EU Court of Justice (ECJ). What’s at stake is if international flows of personal data to and from the EEA can continue as is now, or if major changes will be required. The verdict in the groundbreaking "Schrems 2.0" case will dictate whether the widely used Standard Contractual Clauses (SCCs) and the EU/USA Privacy Shield will remain a valid means of transferring personal data to countries outside the EEA under the EU’s GDPR. As these mechanisms are used for a large majority of international data transfers, this may in turn have a large impact on organisations around the globe. In preparation for the case, we analyse the road so far, and what the possible outcomes could mean for your organisation in regard to data privacy.

Read More

All you need to know about Data Processing Agreements

Jul 2, 2020 10:15:12 AM / by PrivacyPerfect posted in Data Processing Agreements, Third-party

 One way or another, almost all organisations rely on third parties for processing personal data in today’s digital world, creating a direct need for data processing agreements (DPA). Even the tools that are considered to be the basic necessities in business, such as email clients, CMS systems, data storage servers, or website analytics, all process personal data on behalf of organisations. With the introduction of the GDPR, there are strict requirements and guidelines on how this can be done in a compliant manner, through signed DPAs between the organisation (the data controller) and any party that acts as a data processor on their behalf. But what are Data Processing Agreements (DPAs), are they really necessary for you, what do they look like, and who needs to be involved from within your organisation? 
Read More

Data Subject Requests under GDPR vs CCPA

Jun 25, 2020 5:15:46 PM / by PrivacyPerfect posted in ccpa, Data Subject Requests

Responding to Data Subject Requests has been an ongoing challenge for organisations worldwide due to the complexity and tight deadlines of the process. July 1st 2020, California will become the first US state with an enforced comprehensive consumer privacy law, the California Consumer Privacy Act (CCPA), creating new, broad privacy rights that impose significant obligations as well. The new law, which we can see as a Californian counterpart of the General Data Protection Regulation (GDPR), might have a significant impact on entities that collect and share and sell personal data. While both the GDPR and CCPA provide rights to individuals in regard to managing their personal information , there are several overlaps and differences between them. Let’s take a look. 

Read More

The future of data processing in driverless cars

Jun 18, 2020 2:30:00 PM / by PrivacyPerfect posted in GDPR Predictions, Future of Data Processing

The shift from ‘connected cars’ (cars communicating with their manufacturers, traffic lights, surrounding vehicles etc.) to ‘self-driving’, ‘driverless’ or ‘autonomous cars’, will impose new challenges to GDPR compliance. Business models and use cases of such cars will change, as will controllership, processors, purposes, and types of data being processed. In this article, we will discuss the repercussions and challenges to GDPR compliance in this paradigm shift.

Read More

The most important statistics relating to data protection that you need to know about

Jun 9, 2020 1:51:32 PM / by PrivacyPerfect

After 2 years since the enforcement of the GDPR, we have learned a lot about its effects, challenges, and advantages. But what learnings does the data hold? Numerous research has been conducted in regard to the privacy regulation, as the GDPR continues to be influential in shaping the way businesses utilise the data they gather. While obliging with the regulation has required plenty of investment from businesses, GDPR compliant organisations are now reporting on gaining a wide-range of competitive advantage thanks to compliancy. In this blog post, we look into key learning points based on global and European research. 

Read More

Checklist for DPOs starting at a new company

Jun 4, 2020 2:04:43 PM / by PrivacyPerfect posted in DPO, Data Protection Officer, Personal Data, GDPR Controller, gdpr2020, law firms, legal services

Starting at a new organisation as a Data Protection Officer is very exciting, but can also feel a little overwhelming: Where to start? What to do first? Who to talk to? How to get up to speed as fast as possible? To help ease the transition, we have created a checklist for the first couple of months that DPOs may find useful when starting out at their new company. 

Read More

    Lists by Topic

    see all
    harmas_Rajztábla 1-1
    Keep informed!
    Sign up to the Weekly GDPR Digest now.