Conversely, the lowest-scoring areas were (1) contracts and data sharing (e.g., lack of safeguards for B2B and cross-border data sharing), (2) breach response and monitoring (e.g., absence of data breach handling policies or breach notification procedures), and (3) individuals’ rights (...
The Proposed Guidelines confirm that the PDPA’s consent, notification, and accountability obligations apply to the collection and use of personal data in the Business Deployment of AI Systems and provides helpful guidance on compliance with these obligations. With respect to ...
Conversely, the lowest-scoring areas were (1) contracts and data sharing (e.g., lack of safeguards for B2B and cross-border data sharing), (2) breach response and monitoring (e.g., absence of data breach handling policies or breach notification procedures), and (3) individuals’ rights (...