Free Trial

    THE PRIVACYPERFECT BLOG

    How can GDPR compliance efforts benefit you as an NGO?

    Jan 31, 2020 8:00:00 AM / by PrivacyPerfect posted in EU, GDPR Compliance, GDPR for SMEs, Reputation under GDPR, Marketing under GDPR, GDPR for Marketers, DPIA, gdpr2020, NGO

    The GDPR applies to organisations and public bodies of all types, that collects and processes personal data belonging to individuals residing in the EU/EEA, charities and NGOs are also obligated to comply with the EU’s privacy regulation. As NGOs and charities handle an abundance of sensitive data, it’s important to take appropriate safeguards in order to avoid GDPR fines and cyberthreats. Numerous research has indicated that the GDPR has helped companies with an increase of consumer trust, but what does this mean for NGOs specifically in terms of potential benefits?

    GDPR_Compliance_NGO

    Read More

    Data Breaches: The Business Risk of the Decade

    Jan 23, 2020 4:00:00 PM / by The Trust Bridge posted in EU, Data Privacy, Data Protection, GDPR Fines, Data Breach, gdpr, gdpr2020

    Working across the information space in both the private, not for profit and the public sector, The Trust Bridge Senior Consultant, Carol Tullo, has seen the ecosystem of data policy expand and collide with the world of information rights. Carol states that “So many of us operating in this field have balanced the advantages of the open flow of data with the tensions in the safety and compliance safeguards that we expect, be it as individuals, family units or businesses” The access, storage and tracking of personal data has changed our worlds. Protecting our data and our individual profiles is what data protection is all about. This is not new.  

    Data_breaches_business_risk_decade-1

    Read More

    GDPR Compliance is Becoming a Key Point for Brands

    Jan 16, 2020 4:10:42 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Data Privacy, Data Protection, Compliance, GDPR for SMEs, Reputation, Reputation under GDPR, GDPR For Tech Companies, Marketing, Marketing under GDPR, gdpr 2019

    Reports have indicated that people have become increasingly critical about their data on how it's stored and what it is being used for. It has become paramount that businesses take the extra steps in ensuring a secure and privacy compliant way of handling such personal data. As pressure heaps on businesses and brands to adopt this data privacy centered culture, why is it vital for brands to use compliance to their advantage, and not see it as a burden?
    gdpr_compliance_benefit_for_brands

    Read More

    What are Some Key Differences Between Consent & Legitimate Interest?

    Jan 9, 2020 2:11:47 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Data Privacy, Data Processing, Data Protection Officer, GDPR Controller, GDPR Processor, Data Controlling, GDPR Reputation, Data Consent, Consent, Marketing under GDPR, GDPR for Marketers, gdpr, DPIA

    Legitimate interest and consent are two of the six lawful bases that data processors can choose from when gathering and processing data subject personal data. Both of the mentioned lawful bases are the most commonly used reasoning among organisations for their data gathering. But what are some of the key differences between the two? 

    differences_consent_legitimate_interest_lawful_basis

    Read More

    A Christmas Story: GDPR Compliance

    Dec 18, 2019 1:26:30 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Compliance, GDPR Software, Data Breach, Data Security, Data Assessment, gdpr 2019

    This is the story of one cold December for Jamie, and his data conscious filled adventure. He started the month with his Christmas shopping, all the discounts and all the best offers about - he grabbed them all, without a hint of any doubt. From the latest headphones, to pants, a new pair of white sneakers, and even some living room plants. He realised one important thing, after all that almost effortless buying, he’d not just been spending money here and there, he’d been giving his data - with almost nothing to spare.

    Read More

    Companies and the Race for Compliance

    Dec 11, 2019 1:51:05 PM / by PrivacyPerfect posted in EU, GDPR Compliance, US, GDPR for SMEs, Small business GDPR, Medium business GDPR, DPO, Data Protection Officer, International GDPR, Reputation under GDPR, GDPR Reputation, GDPR For Tech Companies, gdpr 2019, Europe

    As we slowly enter 2020, during the year of 2019, numerous studies have been conducted with the objective to see just how far companies fare in regards to their GDPR compliance efforts. As fines and penalties are still being issued from various data protection regulators in their respectful countries, it may be suggested that companies, ranging from multinational corporations to SMEs, are still struggling to be fully compliant with the GDPR. In this blogpost, we take a look at several key studies done by various types of organisations, the numbers in their findings, and how it all shapes the race for compliance.

    Read More

    Is CCPA (California Consumer Privacy Act) The Same as GDPR?

    Dec 6, 2019 8:30:32 AM / by The Trust Bridge posted in USA, EU, GDPR Compliance, US, Data Privacy, Data Protection, gdpr 2019, ccpa

    Under CCPA, consumers will enjoy significant control over the ways in which businesses utilize their data.  These expanded rights to data control are largely in line with the GDPR’s objectives.  However, the California law  differs from its European cousin in several important ways.

    Read More

    GDPR for SMEs: Benefit or Burden?

    Nov 29, 2019 9:12:25 AM / by PrivacyPerfect posted in EU, Data Privacy, Data Protection, Small business GDPR, Data Protection Officer, Data Consent, Marketing under GDPR, gdpr 2019

    When the EU fully enforced the GDPR back in May of 2018, there were many speculations and doubts on the consequences, and whether or not SMEs will need to adhere to the full extent of the regulations or not. A common misconception that followed was that the GDPR was seen as a data privacy law that would only be looking into the data protection practices of big multinational enterprises. After over  a year since it’s enforcement now, we are able to see the first results on the extent of how the GDPR can apply to each type of business, and what best practices businesses can turn to in order to stay aligned to the obligations. In this blog post, we look into the important points SMEs should know in regards to the GDPR and how the regulation can be turned into a benefit, rather than a burden.

    Read More

    Facial Recognition & GDPR: The Good, The Bad, and the Problematic

    Nov 21, 2019 2:23:42 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Data Privacy, Data Protection, Compliance, Data Processing, Personal Data, Data Consent, Consent, Facial Recognition, gdpr, DPIA, gdpr 2019, DPA, Britain

    Earlier this week, France announced that it will be the first country within the EU to introduce the use of facial recognition for government services. A decision that has raised a few eyebrows in terms of people’s privacy and the connotation it may imply in regards to the GDPR. Didier Baichere, a lawmaker with French president Emmanuel Macron ́s party, insisted that the general public shouldn't be worried. But, should they? What sort of implications can facial recognition technology make and just how protected are the public’s sensitive data? Let’s take a look.

    Read More

    Brexit Postponed, Not Cancelled - How to Keep Sharing Data After Brexit?

    Nov 15, 2019 10:07:16 AM / by Timelex posted in EU, DPO, Data Protection Officer, Data Transfer, International Data Transfer, International GDPR, GDPR Reputation, GDPR For Tech Companies, gdpr, gdpr 2019, Europe, Brexit, Britain

    The EU agreed to further postpone Brexit until 31 January 2020, the so-called “withdrawal date”. Before such date there will be parliamentary elections in the UK on 12 December 2019.

    In terms of data protection, the UK will eventually become a third country in case of a Brexit, meaning that an organisation established in the EEA should implement an adequate data transfer mechanism to share personal data with other organisations in the UK, such as other group offices or service providers. The new postponement gives companies some extra time to look at the possible data transfer mechanisms for implementation after the withdrawal date. Even in case of yet another postponement thereof, sooner or later the UK will become a third country.

    In this blog, Timelex will explain the data transfer possibilities in more detail.

    Read More