For many, being GDPR certified or obtaining GDPR certification is the holy grail. It provides proof that you comply with the GDPR and other data protection laws. This is especially true for processors that process personal data for controllers. [...]
Who must appoint a DPO? What does the General Data Protection Regulation (GDPR) require regarding a Data Protection Officer (or DPO)? This is one of the questions the GDPR, which the European Parliament recently adopted, has made many organisations ask. Another one of [...]
For many, a data protection standard is the holy grail in assisting them to comply with data protection laws. Data protection standards often provide very practical actionable controls (almost a checklist) that they can implement in order to protect data and therefore comply [...]
When a data subject's right to privacy is infringed or someone fails to protect their personal data, and they suffer damages as a result. Who is liable for those damages? Who should the data subject be taking legal action against? Is [...]
The deadline to comply with the General Data Protection Regulation (GDPR) was 25 May 2018. The date has come and gone. People all over the world are rushing to comply and are working hard to implement the required controls. The big [...]
They say hindsight is 20/20. And usually it's not helpful to hear that. But for once we can really apply what we've learnt. By helping organisations meet the GDPR compliance deadline, we've identified the key stumbling blocks to avoid as [...]
The Argentina Personal Data Protection Act has been Argentina's data protection law since 2000. The country is, however, moving away from this law, and has already drafted a new data protection Bill. The reason for this new Bill is to [...]
If you are a data subject in the European Union, you will want to know what the right to data portability is and how to port data. You will ask questions like: How do I port my data? These are [...]
What is the right to data portability? Is it about a data subject taking their IDs and laptops containing their personal data with them on the road? The answer is: Not really. Data portability is about more than just that. [...]
Privacy by design or data protection by design is a real requirement under the General Data Protection Regulation (GDPR) for organisations that the GDPR applies to. It is no longer an abstract and unenforceable legal concept. You now have to [...]
