Since the enforcement of the GDPR back in May 2018, organisations that process personal data within the EU & EEA are obligated to respond to a Data Subject Access Request (DSAR). DSARs are not new, however, the GDPR enforced a new set of new rules for the process. For instance, organisations today are required to respond within 30 days upon receiving a request. The tight time-frame and the process itself often poses challenges for organisations when responding to DSARs.
How to overcome the challenges of responding to DSARs
Mar 5, 2020 3:43:52 PM / by PrivacyPerfect posted in DPO, Data Protection Officer, GDPR Reputation, gdpr, Netherlands, gdpr2020, DSAR
Discounts & Data: GDPR for Retailers
Oct 17, 2019 6:07:01 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Data Privacy, Data Protection, GDPR Software, DPO, Data Protection Officer, Personal Data, International GDPR, Data Controlling, GDPR Reputation, Data Consent, Cookie, Consent, Marketing, Marketing under GDPR, GDPR Summary, DPIA, gdpr 2019, Europe, DPA, Netherlands
What does the GDPR really mean for you as a retailer? Well, as is often the case with a subject like privacy: it depends. After you’ve determined that the GDPR is applicable because personal (identifying) data is involved, let’s take a look at today’s retail business operations and what it entails. We will go through specific aspects of direct marketing, e-commerce habits, and even efforts made for compliance offline, to get a better understanding of what the GDPR means for retail.
Breach don’t kill my vibe: ways to mitigate a data breach
Oct 3, 2019 3:48:17 PM / by PrivacyPerfect posted in EU, GDPR Compliance, Data Security, Data Protection Officer, Reputation under GDPR, GDPR Reputation, GDPR For Tech Companies, Data Consent, GDPR Compliance Program, Consent, gdpr, DPIA, gdpr 2019, Europe, DPA, Netherlands, Britain
Data breach. Two words you just don’t want to hear after a long week. It’s finally the Friday afternoon you’d been waiting for. Weekend plans with the family, the clock has just hit 16:00, and the weather isn’t as bad as predicted. Yet, here you are, after conducting a DPIA, finding yourself in a situation where you have a mere 72 hours to handle a whole breach. In this blog post, we will discuss your options, and provide you with support to handle this procedure seamlessly.
Back in the urban jungle - Latest data privacy happenings (3/3)
Sep 6, 2019 10:51:17 AM / by PrivacyPerfect posted in EU, GDPR Compliance, US, Data Privacy, Data Protection, Data Breach, Personal Data, GDPR For Tech Companies, Data Consent, Cookie, Cookies, Facial Recognition, gdpr, gdpr 2019, Europe, Twitter, Netherlands, Britain, Germany, Facebook, Windows, Microsoft
Consent banners are still flawed, dating apps discovered to expose your exact and real time location to anybody, and the UK’s ICO gives adtech an ultimatum. While you were catching up on your missed calls and emails, the privacy world was in constant movement. In this blog, we will have a look at the last two weeks of August.
Flying back home - Catch up on data privacy happenings on your flight back home (2/3)
Aug 29, 2019 2:06:59 PM / by PrivacyPerfect posted in USA, EU, Data Privacy, Data Protection, Compliance, Data Breach, Data Security, Personal Data, Data Controlling, Data Consent, Consent, Cookies, gdpr, Europe, DPA, Brexit, Twitter, Instagram, FaceApp, Hyp3r, Netherlands, Britain, Germany, Facebook, Libra, Cryptocurrency, FashionID, Boris Johnson, DUO, Windows, Microsoft
New cookie guidance, joint controllership status due to social media plugins, and tech companies spying on you through their digital assistants - they might be listening when you ask Google or Siri for the route back home from France. The weeks from the 20th of July to the 10th of August were hectic. Instead of going through piles of news around data privacy from the summer months, get quickly caught up by looking at a summary of the most important happenings in this short blog post, the second of a three piece series, focusing on the last two summer months.