Free Trial

    THE PRIVACYPERFECT BLOG

    Brexit Postponed, Not Cancelled - How to Keep Sharing Data After Brexit?

    Nov 15, 2019 10:07:16 AM / by Timelex posted in EU, DPO, Data Protection Officer, Data Transfer, International Data Transfer, International GDPR, GDPR Reputation, GDPR For Tech Companies, gdpr, gdpr 2019, Europe, Brexit, Britain

    The EU agreed to further postpone Brexit until 31 January 2020, the so-called “withdrawal date”. Before such date there will be parliamentary elections in the UK on 12 December 2019.

    In terms of data protection, the UK will eventually become a third country in case of a Brexit, meaning that an organisation established in the EEA should implement an adequate data transfer mechanism to share personal data with other organisations in the UK, such as other group offices or service providers. The new postponement gives companies some extra time to look at the possible data transfer mechanisms for implementation after the withdrawal date. Even in case of yet another postponement thereof, sooner or later the UK will become a third country.

    In this blog, Timelex will explain the data transfer possibilities in more detail.

    Read More

    Data Transfers: In & Out of the EU

    Nov 1, 2019 10:22:06 AM / by Brodie Bavidge posted in EU, GDPR Compliance, Data Privacy, DPO, Data Protection Officer, Data Transfer, International Data Transfer, Reputation under GDPR, GDPR For Tech Companies, GDPR for Marketers, GDPR Summary, gdpr 2019

    International data transfers play a vital role for data driven businesses and organisations. As processes have become but a few clicks away and the digital world continues advancing, organisations must take the appropriate measures to ensure protection over their data and the data subjects. The EU’s GDPR aims to protect personal data, and provides strict obligations and standards that every organisation should take when dealing with international data transfers. Below are key points for organisations to consider upon doing international data transfers from and to the EU.

    Read More

    A Cautionary Tale: The Brief Look Into the Future of Personalisation

    Oct 24, 2019 5:26:39 PM / by Brodie Bavidge posted in EU, GDPR Compliance, Data Privacy, Data Protection, Data Processing, Data Security, DPO, Data Protection Officer, GDPR Reputation, GDPR For Tech Companies, Data Consent, Consent, Cookies, Marketing under GDPR, gdpr, gdpr 2019

    It’s a rainy Thursday morning and I’ve just got into my driverless cab. I’d usually miss it, but because the cab now knows the average time I take to get ready, there is no actual way I could miss one. It knows where I need to go, what time I need to be there and also the preferred route I want, all through a 0.2 second scan of my thumb’s fingerprint. During my ride, I listen to the playlist made for me specially for this Thursday. It was made instantly as I typed in the first two words that came to my mind this morning. It can be any literally any word, isn’t that fun? It knows what music I want to listen to, the length of the songs I like, the mix of genres I prefer, and it also predicts the exact moments I would get bored of the song and automatically removes it from the playlist - only to replace it with an absolute banger of a song I was thinking about giving a listen to. 

    Read More

    Discounts & Data: GDPR for Retailers

    Oct 17, 2019 6:07:01 PM / by Mark Fousert posted in EU, GDPR Compliance, Data Privacy, Data Protection, GDPR Software, DPO, Data Protection Officer, Personal Data, International GDPR, Data Controlling, GDPR Reputation, Data Consent, Cookie, Consent, Marketing, Marketing under GDPR, GDPR Summary, DPIA, gdpr 2019, Europe, DPA, Netherlands

    What does the GDPR really mean for you as a retailer? Well, as is often the case with a subject like privacy: it depends. After you’ve determined that the GDPR is applicable because personal (identifying) data is involved, let’s take a look at today’s retail business operations and what it entails. We will go through specific aspects of direct marketing, e-commerce habits, and even efforts made for compliance offline, to get a better understanding of what the GDPR means for retail.

    Read More

    Breach don’t kill my vibe: ways to mitigate a data breach

    Oct 3, 2019 3:48:17 PM / by Brodie Bavidge posted in EU, GDPR Compliance, Data Security, Data Protection Officer, Reputation under GDPR, GDPR Reputation, GDPR For Tech Companies, Data Consent, GDPR Compliance Program, Consent, gdpr, DPIA, gdpr 2019, Europe, DPA, Netherlands, Britain

    Data breach. Two words you just don’t want to hear after a long week. It’s finally the Friday afternoon you’d been waiting for. Weekend plans with the family, the clock has just hit 16:00, and the weather isn’t as bad as predicted. Yet, here you are, after conducting a DPIA, finding yourself in a situation where you have a mere 72 hours to handle a whole breach. In this blog post, we will discuss your options, and provide you with support to handle this procedure seamlessly.

    Read More

    Ad Tech and Privacy Law Compliance: A Complicated Relationship

    Sep 27, 2019 9:04:40 AM / by Brodie Bavidge posted in EU, GDPR Compliance, Data Protection, GDPR for SMEs, Small business GDPR, Medium business GDPR, Data Protection Officer, GDPR Reputation, GDPR For Tech Companies, Data Consent, Cookie, Consent, Cookies, Marketing, Marketing under GDPR, GDPR for Marketers, gdpr, gdpr 2019, Europe, DPA, Britain

    Back in June, the UK’s Data Protection Authority (ICO) released statements on their stance in regards to ad tech, saying: “If you operate in the adtech space, it’s time to look at what you’re doing now, and to assess how you use personal data” (Simon McDougall, Executive Director for Technology and Innovation at ICO). The ICO also released a report that looked into how the ad tech sector should comply with the GDPR. Below are the most important aspects to take into account if you work in or with the ad tech sector: 

    Read More

    How to overcome the challenges of conducting a DPIA

    Sep 19, 2019 10:39:46 AM / by Brodie Bavidge posted in EU, GDPR Compliance, Compliance, Data Processing, Data Security, DPO, Data Protection Officer, Personal Data, Data Controlling, GDPR Reputation, Data Consent, Data Assessment, gdpr, DPIA, gdpr 2019, Europe, DPA

    Conducting a DPIA is often seen as a rather challenging task. But, there are ways still to make it a little easier.  We have highlighted the steps to get through conducting a DPIA in the least painless way possible. We’ve put down aspects from pre-assessment elements, through overcoming the struggles of getting support and involving key players, to how you can cut through the edges and simplify processes.         

    Read More

    Could Personal Data be the New Cost for Health Progression?

    Sep 13, 2019 12:16:39 PM / by Brodie Bavidge posted in USA, EU, GDPR Compliance, US, Data Privacy, Data Protection, Processing, Data Processing, Data Breach, Data Security, Personal Data, Data Controlling, Data Consent, GDPR Predictions, hubspot, gdpr 2019, Europe, Britain

    The age old question we ask ourselves on what we receive, is to what we have to give up in order to have it. Will data become the new aspect we give up in order for tech in the health field progress? With new ways to help improve the lives of millions of people who potentially can be at their most vulnerable, personal data continues to be of major importance in health progression. At the same time, it begs the question: what will happen if business and ethics clash as a result of bettering healthcare?   

    Read More

    Back in the urban jungle - Latest data privacy happenings (3/3)

    Sep 6, 2019 10:51:17 AM / by Mark Fousert posted in EU, GDPR Compliance, US, Data Privacy, Data Protection, Data Breach, Personal Data, GDPR For Tech Companies, Data Consent, Cookie, Cookies, Facial Recognition, gdpr, gdpr 2019, Europe, Twitter, Netherlands, Britain, Germany, Facebook, Windows, Microsoft

    Consent banners are still flawed, dating apps discovered to expose your exact and real time location to anybody, and the UK’s ICO gives adtech an ultimatum. While you were catching up on your missed calls and emails, the privacy world was in constant movement. In this blog, we will have a look at the last two weeks of August.

    Read More

    Flying back home - Catch up on data privacy happenings on your flight back home (2/3)

    Aug 29, 2019 2:06:59 PM / by Mark Fousert posted in USA, EU, Data Privacy, Data Protection, Compliance, Data Breach, Data Security, Personal Data, Data Controlling, Data Consent, Consent, Cookies, gdpr, Europe, DPA, Brexit, Twitter, Instagram, FaceApp, Hyp3r, Netherlands, Britain, Germany, Facebook, Libra, Cryptocurrency, FashionID, Boris Johnson, DUO, Windows, Microsoft

    New cookie guidance, joint controllership status due to social media plugins, and tech companies spying on you through their digital assistants - they might be listening when you ask Google or Siri for the route back home from France. The weeks from the 20th of July to the 10th of August were hectic. Instead of going through piles of news around data privacy from the summer months, get quickly caught up by looking at a summary of the most important happenings in this short blog post, the second of a three piece series, focusing on the last two summer months. 

    Read More