Free Trial

    THE PRIVACYPERFECT BLOG

    8 GDPR compliance tips explained by Queen songs

    May 19, 2020 12:39:25 PM / by PrivacyPerfect posted in GDPR Compliance, GDPR Explained, Personal Data, GDPR Processor, GDPR For Tech Companies, GDPR Summary, gdpr2020

    Often the best way to tackle complicated matters is to make it fun. Because, the show must go on. Therefore, here are 8 essential tips to become and stay compliant with the GDPR if you don’t want to be the next one biting the dust.

    Read More

    GDPR Easy Read: Are CISOs facing even more challenges?

    Mar 31, 2020 3:13:51 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Data Privacy, Data Protection, ciso, GDPR Easy Read

    As a Chief Information Security Officer, you hold a vital role in protecting your organisation's most valuable data as well as their reputation. With experts suggesting the numbers of cyberattacks and data breaches to increase in the upcoming years, your role as a CISO could prove even more decisive. Recent reports have suggested that in the ever-growing pressure CISOs are met with, many are bridging cybersecurity and data privacy together.

    This includes keeping up with the EU's GDPR and the numerous obligations it provides. As you continue to establish your organisation's visions, strategies and programs to ensure information assets are properly protected, how are you bridging data privacy compliance with cybersecurity? 

    Read More

    All you need to know about Data Processing Agreements

    Mar 19, 2020 4:04:37 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Data Protection, DPO, Data Protection Officer, GDPR Controller, GDPR Processor, GDPR Reputation, gdpr, DPA, gdpr2020

    One way or another, almost all organisations rely on third parties for processing personal data in today’s digital world, creating a direct need for data processing agreements (DPA). Even the tools that are considered to be the basic necessities in business, such as email clients, CMS systems, data storage servers, or website analytics, all process personal data on behalf of organisations. With the introduction of the GDPR, there are strict requirements and guidelines on how this can be done in a compliant manner, through signed DPAs between the organisation (the data controller) and any party that acts as a data processor on their behalf. But what are Data Processing Agreements (DPAs), are they really necessary for you, what do they look like, and who needs to be involved from within your organisation? 

    Read More

    How can organisations create the perfect privacy statement?

    Feb 20, 2020 5:31:59 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Compliance, Data Security, Personal Data, GDPR Controller, gdpr2020

    The GDPR highlights that data subjects need to be given the right to be informed about the gathering and the use of their personal data. Organisations are encouraged to fulfill this obligation through a privacy statement, that informs individuals in a clear and easily understandable manner on how their personal data is gathered and processed by the organisation. At the same time, organisations often find challenges in creating the perfect privacy statement as narrowing down a huge variety of complex legal information is not a task for the faint hearted. Furthermore, with the enforcement of the GDPR, previous privacy statements also had to be readjusted. So, what do organisations need to keep in mind for creating the perfect privacy statement, and what benefits it holds to have one, besides compliance?

    Read More

    What benefits and opportunities does data minimisation hold for businesses?

    Feb 19, 2020 12:54:25 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Data Privacy, Data Breach, GDPR For Tech Companies, gdpr, gdpr2020, data minimisation

    Back when the GDPR was still within the adaptation phase, data-driven organisations and public bodies that process personal data on a large scale found the new obligation of data minimisation to be a rather vague obstacle. The GDPR states that personal data shall be adequate, relevant, and not excessive in relation to the purpose or purposes for which they are processed, but this concept still often poses challenges for some firms. At the same time, data driven organisations continue to process and gather personal data on a large scale, where data minimisation could prove that ‘bigger’ might not necessarily always mean ‘better’: after over a year since the EU privacy regulation’s enforcement, we have now learned that data minimisation actually holds several benefits for organisations that decide to embed it into their practices. Before we start looking into what data minimisation can look like in practice, let’s take a look into what this concept entails exactly according to the GDPR. 

    Read More

    How has the GDPR strengthened email marketing?

    Feb 7, 2020 10:49:09 AM / by PrivacyPerfect posted in GDPR Compliance, Data Privacy, Data Protection, Compliance, Data Consent, Marketing, Marketing under GDPR, gdpr2020

    Back in the adaptation period of the GDPR between 2016 and 2018 May, many businesses were concerned that the new EU-privacy regulation might weaken their marketing efforts, especially in the field of email marketing.  As the GDPR puts several restrictions on why and how personal data can be collected and processed, previous forms of popular marketing techniques, such as building a database of prospects for years on end, and purchasing prospect lists, had to be changed and adjusted for compliance. These types of databases were used most typically for the email marketing efforts or organisations, therefore many believed that this aspect of business marketing might actually suffer from the new regulation. After over a year since the enforcement of the GDPR though, businesses reported several benefits of the GDPR in regard to marketing, through adapting a compliant email marketing strategy. So, what steps can your organisation take to make sure to enjoy these benefits, while strengthening your compliance?

    Read More

    How can GDPR compliance efforts benefit you as an NGO?

    Jan 31, 2020 8:00:00 AM / by PrivacyPerfect posted in EU, GDPR Compliance, GDPR for SMEs, Reputation under GDPR, Marketing under GDPR, GDPR for Marketers, DPIA, gdpr2020, NGO

    The GDPR applies to organisations and public bodies of all types, that collects and processes personal data belonging to individuals residing in the EU/EEA, charities and NGOs are also obligated to comply with the EU’s privacy regulation. As NGOs and charities handle an abundance of sensitive data, it’s important to take appropriate safeguards in order to avoid GDPR fines and cyberthreats. Numerous research has indicated that the GDPR has helped companies with an increase of consumer trust, but what does this mean for NGOs specifically in terms of potential benefits?

    GDPR_Compliance_NGO

    Read More

    GDPR Compliance is Becoming a Key Point for Brands

    Jan 16, 2020 4:10:42 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Data Privacy, Data Protection, Compliance, GDPR for SMEs, Reputation, Reputation under GDPR, GDPR For Tech Companies, Marketing, Marketing under GDPR, gdpr 2019

    Reports have indicated that people have become increasingly critical about their data on how it's stored and what it is being used for. It has become paramount that businesses take the extra steps in ensuring a secure and privacy compliant way of handling such personal data. As pressure heaps on businesses and brands to adopt this data privacy centered culture, why is it vital for brands to use compliance to their advantage, and not see it as a burden?
    gdpr_compliance_benefit_for_brands

    Read More

    What are Some Key Differences Between Consent & Legitimate Interest?

    Jan 9, 2020 2:11:47 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Data Privacy, Data Processing, Data Protection Officer, GDPR Controller, GDPR Processor, Data Controlling, GDPR Reputation, Data Consent, Consent, Marketing under GDPR, GDPR for Marketers, gdpr, DPIA

    Legitimate interest and consent are two of the six lawful bases that data processors can choose from when gathering and processing data subject personal data. Both of the mentioned lawful bases are the most commonly used reasoning among organisations for their data gathering. But what are some of the key differences between the two? 

    differences_consent_legitimate_interest_lawful_basis

    Read More

    A Christmas Story: GDPR Compliance

    Dec 18, 2019 1:26:30 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Compliance, GDPR Software, Data Breach, Data Security, Data Assessment, gdpr 2019

    This is the story of one cold December for Jamie, and his data conscious filled adventure. He started the month with his Christmas shopping, all the discounts and all the best offers about - he grabbed them all, without a hint of any doubt. From the latest headphones, to pants, a new pair of white sneakers, and even some living room plants. He realised one important thing, after all that almost effortless buying, he’d not just been spending money here and there, he’d been giving his data - with almost nothing to spare.

    Read More

      Lists by Topic

      see all
      harmas_Rajztábla 1-1
      Keep informed!
      Sign up to the Weekly GDPR Digest now.