Businesses will be considered ‘aware’ of data breaches under GDPR when their data processors notice the breach
Businesses that outsource the processing of personal data to other companies will be said to be aware of data breaches […]
guidance
Europe’s new privacy regime: What’s an ad tech company to do?
There’s no question the GDPR has anyone who’s paying attention “on their feet.” Talk to any privacy consultant or vendor […]
WP29 releases draft breach notification guidelines
The EU’s General Data Protection Regulation imposes stricter obligations on data controllers and processors to ensure the security of personal […]
What’s new in the WP29 guidelines on DPIAs?
The Article 29 Working Party has published this week its “last revised” guidelines on data protection impact assessments and determining […]
Australian DPA seeks comments on data breach notification guidelines
The Office of the Australian Information and Privacy Commissioner has published draft resources for the Notifiable Data Breaches scheme, asking […]
Guidelines to Data Protection Impact Assessment
Data Protection Impact Assessment (DPIA) is a useful tool that can help organizations to understand the risks related to processed […]
How to comply with provisions on joint controllers under the GDPR
The concept of joint controllers in EU law, in contrast to a distinction between controllers and processors, has not been […]
EU DPAs will issue GDPR draft guidance and analysis of EU-US Privacy Shield soon
The first joint annual review of the Privacy Shield is underway and the European Commission is preparing its report to […]
What’s wrong with the ICO’s draft guidance on controller-processor contracts?
Controller-processor contracts and liabilities don’t seem destined for any guidance from the Article 29 Working Party, at least according to […]
Data Protection and Privacy Commissioners Issue Global Connected Car Guidance
Last week, at the 39th International Conference of Data Protection and Privacy Commissioners in Hong Kong, data protection authorities from […]
Privacy controls should be developed for users of connected and autonomous vehicles
Users of connected and autonomous vehicles should be able to control who is given access to the data generated by […]
New Cybersecurity Guide for Small and Medium Businesses
The Center for Internet Security (CIS) recently published CIS Controls: Implementation Guide for Small- and Medium-Sized Enterprises (SMEs). This guide […]