This document seeks to provide guidance on the concepts of controller and processor based on the GDPR’s rules on definitions in Article 4 and the provisions on obligations in chapter IV. The main aim is to clarify the meaning of the concepts and to clarify the different roles and the distribution of responsibilities between these […]
GDPR
This document from Spain’s data protection authority Agencia Española de Protección de Datos (AEPD) looks into notion of Data protection by design and by default and provides guidance on its implementation. The General Data Protection Regulation (GDPR), in Article 25 and under the heading “Data protection by design and by default” incorporates the practice of […]
The EU General Data Protection Regulation (GDPR) entered into force on 24 May 2016 and EU Member States are required to implement the Regulation from 25 May 2018. While the Regulation will be binding in its entirety and directly applicable in all Member States, there is a margin of maneuverability for Member States to specify […]
This paper we examines Notice & Consent and what are alternatives.
This guidance helps mitigate the risks arising from a data protection perspective, explaining how data protection principles apply to AI projects.
The Polish Ministry of Digital Affairs published at the end of March a partial draft of the new act on data protection. This is a clear signal that the Polish government has launched preparations for the General Data Protection Regulation. Source: Preparation for the GDPR underway in Poland
On 5 July 2017, almost a year before the General Data Protection Regulation (GDPR) will be applied, the new German Federal Data Protection Act (‘Bundesdatenschutzgesetz’) passed the final stage of the legislative process, the so-called German Data Protection Amendment Act. It has been countersigned by the German Federal President and published in the Federal Law […]
This study addresses the relationship between the General Data Protection Regulation (GDPR) and artificial intelligence (AI). The study carries out a thorough analysis of automated decisionmaking, considering the extent to which automated decisions are admissible, the safeguard measures to be adopted, and whether data subjects have a right to individual explanations
Centre for Information Policy Leadership (CIPL) submited this White Paper as input for the EDPB’s future guidelines on data subject rights (DSR). This Paper examines how these particular DSR should be applied in today’s global data driven and connected world to be effective. It does not directly cover the topics of transparency3 and the right […]
The “technology” in “ technology policy” should have a real meaning – there are signs it’s actually happening. With the growing involvement and engagement of people versed in technology, good concepts are reaching decision-makers. Source: Smart technology policy in Europe is a trend?