Regulations Archives

ISO 27001 Procedures: Implementing Across Global Operations

Verfasst am July 26, 2024 (July 26, 2024) von Zlatko Delev

The implementation of ISO 27001 procedures stands at the forefront of the safeguarding effort, providing a systematic framework to manage the confidentiality, integrity, and availability of corporate information. This standard not only emphasizes the importance of access control but also integrates the Plan-Do-Check-Act (PDCA) cycle to ensure continuous improvement in information security management systems (ISMS). […]

Securing Personal Data under PIPEDA

Verfasst am May 28, 2024 (May 28, 2024) by Tiana Dermendjieva

In an age where data breaches are common, protecting personal information is not just a necessity, but a legal requirement in Canada. Organizations operating under PIPEDA (Personal Information Protection and Electronic Documents Act), must adopt stringent measures to prevent unauthorized access, use, and disposal of personal data. This blog explores the Principle of Limiting Collection, […]

Understanding PIPEDA: Canada’s Federal Privacy Law

Verfasst am May 20, 2024 (May 20, 2024) by Tiana Dermendjieva

In this blog, we’re going to explore the Personal Information Protection and Electronic Documents Act (PIPEDA). We’ll explain what PIPEDA is, who it affects, and the main principles behind it. You’ll also learn about the rights it grants to individuals and the obligations it places on businesses. Our goal is to help you understand how […]

CCPA/CPRA Privacy Notices: Building Trust and Ensuring Compliance

Verfasst am May 14, 2024 (May 14, 2024) by Sibel Amet

The California Consumer Privacy Act (CCPA) and its amendment, the California Privacy Rights Act (CPRA), require businesses to provide consumers with clear and comprehensive privacy notices. Well-crafted privacy notices are crucial for demonstrating compliance and empowering California consumers with control over their personal information and as such are essential for building trust and ensuring compliance. […]

How to Implement the New AI Law in Your Company

Verfasst am April 23, 2024 (April 23, 2024) von Zlatko Delev

The implementation of the AI Act marks a significant stride towards responsible and fair use of artificial intelligence (AI) technologies within the European Union (EU) market. This comprehensive set of rules, proposed by the European Commission in April 2021, targets a broad spectrum of stakeholders in the AI domain, including startups, healthcare entities, and beyond, […]

Article 14 Guide: Meeting Regulatory Requirements for Personal Data Not Directly Obtained from Data Subjects

Verfasst am April 9, 2024 (April 9, 2024) by Daniela Atanasovska

Imagine a software-as-a-service (SaaS) company looking to grow its clientele by purchasing leads from a specialized lead generation firm. These leads come complete with contact details and demographic information of prospective customers. In a similar scenario, envision a real estate agency building a database of potential homebuyers through publicly accessible sources such as property listings […]

The Future of GDPR: Anticipating GDPR 2.0

Verfasst am March 28, 2024 (March 28, 2024) von Ana Mishova

Data protection and privacy have become paramount concerns for individuals and organizations alike. The General Data Protection Regulation (GDPR) has been instrumental in safeguarding personal data and empowering individuals with greater control over their information. As we look to the future, the question arises: what lies ahead for GDPR? Will there be a GDPR 2.0? […]

The Evolving Role of Data Protection Officers in the Post-GDPR Landscape

Verfasst am March 19, 2024 (March 19, 2024) von Ana Mishova

Data protection has become a critical concern for organizations handling personal data. The implementation of the GDPR has brought significant changes to the way businesses handle and protect data. As a result, the role of Data Protection Officers (DPOs) has evolved to meet the new requirements and challenges. In this article, we explore the evolving […]

Aligning Canadian Data Protection with EU Standards: A Comprehensive Guide to GDPR and Canada

Verfasst am March 7, 2024 (March 7, 2024) von Zlatko Delev

As personal data flows across borders with the click of a button, data protection has become a global concern. Two prominent players in this arena are the European Union’s General Data Protection Regulation (GDPR) and Canada’s data protection laws. In this guide, we’ll explore the similarities and differences between these two regulatory frameworks. Our discussion […]

A Complete Guide to Data Protection in Australia: Adapting to GDPR Standards

Verfasst am March 7, 2024 (March 7, 2024) von Zlatko Delev

Data protection is of utmost importance for businesses operating in Australia. With the increasing prevalence of data breaches and privacy concerns, organizations need to stay compliant with the relevant regulations to safeguard their customers’ information. While the GDPR is not directly applicable to Australian businesses, there are significant overlaps and similarities between the GDPR and […]