data processors

A close-up of a laptop keyboard with a unique blue key featuring the European Union flag, replacing the enter key. A finger is pressing this key. The keyboard includes black keys with white lettering and a silver casing, with part of the speaker grille visible on the right.

June 1, 2026

EDPB Approves Europrivacy GDPR Certifications

The EDPB approved Europrivacy certification for global use, enhancing GDPR compliance and simplifying international data transfers with stronger legal safeguards.

July 23, 2025

McDonald’s in Poland Fined €3.6 million for Employee Data Exposure and Security Failures

Polish Data Protection Authority fined McDonald’s and its processor over €3.6 million for GDPR violations after employee data exposure due to poor security and oversight.

October 14, 2024

EDPB Issues Opinion on Processor and Sub-Processor Obligations Under GDPR

The EDPB’s recent opinion clarifies controllers’ obligations regarding processors and sub-processors under the EU GDPR, emphasizing the need for transparency and compliance.

A laptop on a wooden table displays a blue screen with a yellow padlock surrounded by twelve stars, symbolizing the European Union. A smartphone lies next to the laptop. The setting appears to be outdoors, with blurred greenery in the background.

May 18, 2023

CJEU’s Advocate General Issues Opinion on Concept of Controller, Joint Controller, Processor, and Administrative Fines

Advocate General released an opinion on the concepts of “controller”, “joint controller” and “processor”, and also liability system established by the GDPR.

The image shows the French flag waving against a clear blue sky. The flag consists of three vertical stripes: blue, white, and red from left to right. It is mounted on a white pole, slightly leaning as it flutters in the breeze.

January 22, 2022

CNIL sets parameters for processors’ reuse of data for product improvement

The guidance addresses question: when can a processor use personal data for purposes broader than just strictly providing services to the controller?

Person in a light blue shirt writing on papers with a pen at a dark table. The focus is on their hands and the documents, which appear important or formal. The scene conveys a sense of concentration and diligence.

November 20, 2020

European Commission Publishes Draft ‘Article 28’ Standard Contractual Clauses

In addition to issuing new (draft) standard contractual clauses for transferring personal data outside of the EEA, on November 12, […]

May 8, 2019

Security Incident Mitigation Strategy: Effective Negotiation of Technology Contract Limitations of Liability

There is always significant negotiation around caps on liability when negotiating a contract with a technology vendor. If the vendor […]

January 23, 2019

Dutch SA initiates exploratory investigation into DPAs

The Dutch Supervisory Authority (Autoriteit Persoonsgegevens, “AP”) recently communicated a press release stating that it reached out to 30 organizations […]

November 10, 2018

Third-Party Vendor Management Means Managing Your Own Risk

When considering the termination of a vendor relationship, you must consider the vendor, the contract and the business impact. Although […]

November 5, 2018

The road to GDPR certifications won’t be a short one

The EU General Data Protection Regulation has been in effect for five months, and yet there has not been much […]

November 4, 2018

GDPR: the ‘controller v processor’ debate in financial services

Lessons can be learned in the financial services sector from the rush to update contracts to account for the General […]

September 22, 2018

Do you know your third-party providers well?

To maintain your compliance, you will have to track your third-party suppliers and how they handle any customer record data […]

1 2 3

data processors

CNIL sets parameters for processors’ reuse of data for product improvement

Security Incident Mitigation Strategy: Effective Negotiation of Technology Contract Limitations of Liability

Third-Party Vendor Management Means Managing Your Own Risk

Support GDPR buzz!

Get notified about news & resources