Free Trial

    THE PRIVACYPERFECT BLOG

    Brexit Postponed, Not Cancelled - How to Keep Sharing Data After Brexit?

    Nov 15, 2019 10:07:16 AM / by Timelex posted in EU, DPO, Data Protection Officer, Data Transfer, International Data Transfer, International GDPR, GDPR Reputation, GDPR For Tech Companies, gdpr, gdpr 2019, Europe, Brexit, Britain

    The EU agreed to further postpone Brexit until 31 January 2020, the so-called “withdrawal date”. Before such date there will be parliamentary elections in the UK on 12 December 2019.

    In terms of data protection, the UK will eventually become a third country in case of a Brexit, meaning that an organisation established in the EEA should implement an adequate data transfer mechanism to share personal data with other organisations in the UK, such as other group offices or service providers. The new postponement gives companies some extra time to look at the possible data transfer mechanisms for implementation after the withdrawal date. Even in case of yet another postponement thereof, sooner or later the UK will become a third country.

    In this blog, Timelex will explain the data transfer possibilities in more detail.

    Read More

    A Cautionary Tale: The Brief Look Into the Future of Personalisation

    Oct 24, 2019 5:26:39 PM / by Brodie Bavidge posted in EU, GDPR Compliance, Data Privacy, Data Protection, Data Processing, Data Security, DPO, Data Protection Officer, GDPR Reputation, GDPR For Tech Companies, Data Consent, Consent, Cookies, Marketing under GDPR, gdpr, gdpr 2019

    It’s a rainy Thursday morning and I’ve just got into my driverless cab. I’d usually miss it, but because the cab now knows the average time I take to get ready, there is no actual way I could miss one. It knows where I need to go, what time I need to be there and also the preferred route I want, all through a 0.2 second scan of my thumb’s fingerprint. During my ride, I listen to the playlist made for me specially for this Thursday. It was made instantly as I typed in the first two words that came to my mind this morning. It can be any literally any word, isn’t that fun? It knows what music I want to listen to, the length of the songs I like, the mix of genres I prefer, and it also predicts the exact moments I would get bored of the song and automatically removes it from the playlist - only to replace it with an absolute banger of a song I was thinking about giving a listen to. 

    Read More

    Discounts & Data: GDPR for Retailers

    Oct 17, 2019 6:07:01 PM / by Mark Fousert posted in EU, GDPR Compliance, Data Privacy, Data Protection, GDPR Software, DPO, Data Protection Officer, Personal Data, International GDPR, Data Controlling, GDPR Reputation, Data Consent, Cookie, Consent, Marketing, Marketing under GDPR, GDPR Summary, DPIA, gdpr 2019, Europe, DPA, Netherlands

    What does the GDPR really mean for you as a retailer? Well, as is often the case with a subject like privacy: it depends. After you’ve determined that the GDPR is applicable because personal (identifying) data is involved, let’s take a look at today’s retail business operations and what it entails. We will go through specific aspects of direct marketing, e-commerce habits, and even efforts made for compliance offline, to get a better understanding of what the GDPR means for retail.

    Read More

    Breach don’t kill my vibe: ways to mitigate a data breach

    Oct 3, 2019 3:48:17 PM / by Brodie Bavidge posted in EU, GDPR Compliance, Data Security, Data Protection Officer, Reputation under GDPR, GDPR Reputation, GDPR For Tech Companies, Data Consent, GDPR Compliance Program, Consent, gdpr, DPIA, gdpr 2019, Europe, DPA, Netherlands, Britain

    Data breach. Two words you just don’t want to hear after a long week. It’s finally the Friday afternoon you’d been waiting for. Weekend plans with the family, the clock has just hit 16:00, and the weather isn’t as bad as predicted. Yet, here you are, after conducting a DPIA, finding yourself in a situation where you have a mere 72 hours to handle a whole breach. In this blog post, we will discuss your options, and provide you with support to handle this procedure seamlessly.

    Read More

    Ad Tech and Privacy Law Compliance: A Complicated Relationship

    Sep 27, 2019 9:04:40 AM / by Brodie Bavidge posted in EU, GDPR Compliance, Data Protection, GDPR for SMEs, Small business GDPR, Medium business GDPR, Data Protection Officer, GDPR Reputation, GDPR For Tech Companies, Data Consent, Cookie, Consent, Cookies, Marketing, Marketing under GDPR, GDPR for Marketers, gdpr, gdpr 2019, Europe, DPA, Britain

    Back in June, the UK’s Data Protection Authority (ICO) released statements on their stance in regards to ad tech, saying: “If you operate in the adtech space, it’s time to look at what you’re doing now, and to assess how you use personal data” (Simon McDougall, Executive Director for Technology and Innovation at ICO). The ICO also released a report that looked into how the ad tech sector should comply with the GDPR. Below are the most important aspects to take into account if you work in or with the ad tech sector: 

    Read More

    How to overcome the challenges of conducting a DPIA

    Sep 19, 2019 10:39:46 AM / by Brodie Bavidge posted in EU, GDPR Compliance, Compliance, Data Processing, Data Security, DPO, Data Protection Officer, Personal Data, Data Controlling, GDPR Reputation, Data Consent, Data Assessment, gdpr, DPIA, gdpr 2019, Europe, DPA

    Conducting a DPIA is often seen as a rather challenging task. But, there are ways still to make it a little easier.  We have highlighted the steps to get through conducting a DPIA in the least painless way possible. We’ve put down aspects from pre-assessment elements, through overcoming the struggles of getting support and involving key players, to how you can cut through the edges and simplify processes.         

    Read More

    Safeguarding your reputation under the GDPR

    Sep 11, 2018 10:00:00 AM / by Laurens Mommers | COO | PrivacyPerfect posted in Data Protection, GDPR Explained, Reputation, GDPR Reputation

     

    The fines usually attract the most attention when discussing the GDPR. Four percent of your worldwide annual turnover sounds scary - and ‘fear, uncertainty and doubt’ sell. But when we focus on the main risk of being noncompliant with the new privacy regulation, then the logical conclusion is that your reputation is what is at stake. So, how can you safeguard your organisation’s reputation in the field of personal data protection?

    Read More