The Data Protection Blog

July 26, 2018

GDPR365 to introduce multiple languages

GDPR365’s popularity has generated widespread interest along with calls for languages other than English. We’re happy to announce that the base version is fully prepared for the impending rollout of the Dutch version. This will be followed by German, Spanish and French.
July 9, 2018

GDPR enforcement begins – fines from the ICO and CNIL

So it’s begun. The GDPR has been in effect for more than a month. While that’s not really enough time to be able to gather meaningful data on what’s being done, we can certainly gain some insight and learn a bit from actions being taken by supervisory authorities like the UK’s Information Commissioner’s Office (ICO), France’s National Commission on Informatics and Liberty (CNIL) and the Austrian Data Protection Authority (DSB).
June 27, 2018

How the European Data Protection Board will help the GDPR

It’s been about a month since the GDPR came into effect and time to start considering what our new data protection landscape looks like.
June 27, 2018

Reselling GDPR compliance services as a software (SAAS)

Think about getting added revenues by reselling a GDPR software As A Software (SAAS). Extend your portfolio of solutions and generate more revenues.
June 21, 2018

When a DPIA is necessary – the Irish perspective

Under the GDPR each supervisory authority has to prepare and submit to the European Data Protection Board (EDPB) a list of processing operations that require organisations to conduct Data Privacy Impact Assessments (DPIA).
June 17, 2018

It’s begun. The first GDPR complaints.

So it didn’t take long for Max Schrems to use the GDPR to file his first complaint. For those of you who don’t know Max Schrems, he’s the privacy lawyer who successfully challenged Facebook Ireland to prohibit the transfer of data from Ireland to the US.
May 21, 2018

ICO provides guidance and awareness resources as deadline looms

With the GDPR and the UK data protection law coming into effect in less than 10 days I thought it was important to reflect both on Elisabeth Denham’s recent speech at the IAPP and the Regulatory Action Policy that was released by the Information Commissioner’s Office on May 4.
May 4, 2018

Why businesses should stop complaining about GDPR compliance

Organisations in Europe and beyond are gearing up to become GDPR compliant, but many are doing so begrudgingly when in fact the exercise should be looked at in a positive light. The GDPR provides organisations with an opportunity to develop a new philosophy about data governance. It’s a development that will protect your and my personal information from misuse and abuse.
March 20, 2018

Demonstrate compliance with your records of processing activities report

The GDPR is clear In order to demonstrate compliance with this regulation, the controller and processor should maintain records of processing activities under its responsibility. Each controller and processor should be obliged to cooperate with the supervisory authority and make those records, on request, available to it, so that it might serve for monitoring those processing operations.