guidance

October 21, 2017

Scope of rules on profiling not confined to solely automated processing

Laws that place restrictions on the ‘profiling’ of individuals do not just apply to data processing completed entirely automatically, EU […]

October 20, 2017

The review of artificial intelligence argues a new AI council should be created but it wouldn’t be in charge of […]

October 20, 2017

Businesses that outsource the processing of personal data to other companies will be said to be aware of data breaches […]

October 18, 2017

There’s no question the GDPR has anyone who’s paying attention “on their feet.” Talk to any privacy consultant or vendor […]

October 18, 2017

The EU’s General Data Protection Regulation imposes stricter obligations on data controllers and processors to ensure the security of personal […]

October 17, 2017

The Article 29 Working Party has published this week its “last revised” guidelines on data protection impact assessments and determining […]

October 15, 2017

The Office of the Australian Information and Privacy Commissioner has published draft resources for the Notifiable Data Breaches scheme, asking […]

October 14, 2017

Data Protection Impact Assessment (DPIA) is a useful tool that can help organizations to understand the risks related to processed […]

October 13, 2017

The concept of joint controllers in EU law, in contrast to a distinction between controllers and processors, has not been […]

October 12, 2017

The first joint annual review of the Privacy Shield is underway and the European Commission is preparing its report to […]

October 11, 2017

Controller-processor contracts and liabilities don’t seem destined for any guidance from the Article 29 Working Party, at least according to […]

October 6, 2017

Last week, at the 39th International Conference of Data Protection and Privacy Commissioners in Hong Kong, data protection authorities from […]