EDPB Issues Opinion on Processor and Sub-Processor Obligations Under GDPR
The EDPB’s recent opinion clarifies controllers’ obligations regarding processors and sub-processors under the EU GDPR, emphasizing the need for transparency and compliance.
controller
CJEU’s Advocate General Issues Opinion on Concept of Controller, Joint Controller, Processor, and Administrative Fines
Advocate General released an opinion on the concepts of “controller”, “joint controller” and “processor”, and also liability system established by the GDPR.
German court rules CEO to be held personally liable for data privacy violations
German court decided that a CEO was personally liable for a data privacy breach after they hired a detective to investigate possible criminal acts by the plaintiff.
Security Incident Mitigation Strategy: Effective Negotiation of Technology Contract Limitations of Liability
There is always significant negotiation around caps on liability when negotiating a contract with a technology vendor. If the vendor […]
The road to GDPR certifications won’t be a short one
The EU General Data Protection Regulation has been in effect for five months, and yet there has not been much […]
GDPR: the ‘controller v processor’ debate in financial services
Lessons can be learned in the financial services sector from the rush to update contracts to account for the General […]
Every vendor wants to be… a data controller?!
Closing data-related deals seemed so much simpler pre-GDPR, didn’t it? Remember the days when every enterprise customer was a controller […]
Managing commercial risk within the supply chain post
In the pre-GDPR days, it was fairly clear where risk and liability lay with regards to data protection issues within […]
Lack of access to personal data does not unmake a joint controller
The Court of Justice of the EU decided in Case C-210/16 Wirtschaftsakademie that Facebook and the administrator of a fan […]
GDPR Conundrums: The GDPR applicability regime – Controllers
The scope provisions of the national GDPR implementation laws wildly differ and will lead to unacceptable accumulation and incompatibility of […]
Employer liable for disgruntled employee’s deliberate data breach
WM Morrisons Supermarket plc have been held liable to 5,518 of their employees for a deliberate data breach by a […]
1 2