Six points about new Latvian draft personal data processing law
The aim of new draft Personal Data Processing is to establish legal preconditions for implementing the General Data Protection Regulation […]
Legislation
Is it possible to choose your lead supervisory authority under the GDPR?
The General Data Protection Regulation regulates cross-border processing of personal data. For many organizations, identifying their lead supervisory authority (LSA), […]
How will the GDPR’s DPIA requirement affect you?
You may be all too familiar with your organization’s change-management process, the regular steps of review being used, and maybe […]
Is it possible to choose your lead supervisory authority under the GDPR?
The General Data Protection Regulation regulates cross-border processing of personal data. For many organizations, identifying their lead supervisory authority (LSA), […]
Could the GDPR help lower insurance costs?
In the Netherlands there are a wide range of insurances, and they generally concern goods, capital or people. In case […]
Mauritius seeks to bring its Data Protection Bill in line with GDPR
Cabinet of Ministers (‘the Cabinet’) had agreed, on 1 December 2017, to introduce the Data Protection Bill (No. XIX of […]
Software development with Data Protection by Design and by Default
The Norwegian Data Protection Authority has developed these guidelines to help organisations understand and comply with the requirement of data […]
How data protection impacts labor law
One of the aspects of digitalization is that it blurs the lines between personal and professional lives of employees. Such […]
What A29WP requires for Privacy Shield and when they want it?
At its 113th plenary meeting held on Nov. 28, 2017, in Brussels, the Article 29 Data Protection Working Party adopted […]
UK Information Commissioner Publishes Advice on BCR Applications under the GDPR
On November 20, 2017, the UK Information Commissioner’s Office (“ICO”) published an article on its blog containing advice on applications […]
Responding to subject access requests
There’s nothing like a data subject access request to force an inter-departmental huddle. For U.S.-based DPOs, the exercise may feel […]
Mandatory data breach notification coming to Australia
Mandatory data breach notification (MDBN) becomes law in Australia on 22 February 2018. This is a high-impact development requiring businesses […]