Protect your Business with our simply explained Straightforward Cyber/GDPR Compliance Training. A step by step guide to keep your money safe & data compliant
The rules arise from a combination of theconsent rules under the GDPR, and thetechnical rules under another EU lawcalled theePrivacy Directive. Note: Although the UK has now left the EU,the ePrivacy Directive still applies in the UK, under a national law called the Privacy and Electronic Comm...
Simply keeping the time and date of consent linked to an IP address, with a web link to your current data-capture form and privacy policy.Keeping comprehensive records that include a user ID and the data submitted together with a timestamp. You also keep a copy of the version of the data...
Freely given: it must be entirely voluntary, and should not be bundled with other goods or services. Specific: it must be tied to clearly explained use cases. Informed: it can only be given if the data subject is provided enough information about the personal data that will be collected and...
2 Ilina Dobreva Marketing Content Writer Security 7 Website Security Vulnerabilities + Simple Fixes Dec 30, 2024 0 Erin Ridley Content Creator Service Updates Thank You For An Incredible Year Dec 19, 2024 9 Dima Peteva Head Of Brand And Culture...
They can also simply obtain an individual's consent in order to store and process personal data. Such requests must be clear and written in plain language -- no more hiding of consents in general terms and conditions. They could also be processing data to perform tasks that are in the pu...
Paltry sums considering the fact that a company like Facebook made $13.2 billion in revenue in the first quarter of 2018 and the figure could have been far higher if the breaches had occurred after the GDPR came into force, as Information Commissioner Elizabeth Denham explained “We considered ...
This post however wants to signal the issue for which Google have appealed: the territorial reach of the GDPR under Article 3(1) v 3(2) GDPR, as also explained in the European Data Protection Board (EDPA) December 2019guidelineson the territorial scope of the GDPR (and something which the...
Our analysis has shown that monitoring can be used to automate compliance checking for significant parts of the GDPR. We explained why some parts of the GDPR elude monitoring and require other auditing measures or other forms of verification. We also identified and tackled challenges in extracting...
Furthermore, although the GDPR becomes ‘retained EU law’, as explained above, important changes to the GDPR are implemented by ministerial powers granted under the EU (Withdrawal) Act. Enforcement and remedial provisions also change: there will be no scope for dispute resolution within the Europ...