The Office of the Data Protection Authority has issued detailed guidance to help data controllers comply with legal obligations when responding to data subject access requests under Guernsey’s data protection law.
This document is a unified guide for managing data protection risks and conducting DPIAs, integrating lessons and new interpretations to assist Controllers, Processors, and DPOs in complying with GDPR.
This document outlines the recommended elements to assess when designing and validating an encryption system for processing personal data.
EDPB released new guidelines concerning Article 48 of the GDPR on howto handle requests for personal data from non-EU authorities.
The EDPB’s FAQ guide on the EU-U.S. Data Privacy Framework outlines key principles, individual rights, and redress mechanisms to ensure GDPR-compliant data transfers.
This guideĀ constitutes a methodology, a checklist, which identifies various elements to be considered when carrying out a TIA.
The objective of this guide is to support organisations in the implementation of security measures in order to ensure the protection ofpersonal data that they treat.
These guidelines provide guidance on the application of Article 37 LED, in particular on the legal standard for appropriate safeguards to be applied by competent authorities.
The EDPS has issued guidelines to assist EU institutions in complying with data protection regulations when utilizing generative AI tools.
The document provides a detailed analysis of the “consent-or-pay” model, highlighting the connection between granting consent for data processing and the necessity of paying for services.
The guidance emphasizes the importance of complying with legislative requirements and good practices when sending bulk emails to protect personal information, including using secure methods, training staff, and promptly reporting breaches.
Irish DPA has developed the Fundamentals for a Child-Oriented Approach to Data Processing to enhance data protection standards for children using online and offline services, introducing principles and measures to mitigate risks and guide organizations in upholding GDPR obligations.