Data protection laws are constantly changing in today’s world, so you can never be sure that you are up-to-date. There are so many of them that it’s sometimes hard to keep up with all. So, let’s introduce you gradually to some of the most important ones. Taking a look at the NIS2 Directive from our […]
Read More… from Exploring Data Protection Beyond GDPR – What You Need to Know About NIS2 Directive
In the recent blog Finally Unlocking Transatlantic Data Flow: How the Adequacy Decision Impacts US and EU Companies we explain how this EU decision unlocked the transatlantic personal data flow from EEA and in near future UK and Switzerland to the US. But what does this unlocked flow mean for US companies that receive personal […]
On 24 October 2022, the ICO issued a penalty notice (MPN) to Interserve Group Limited (Interserve), imposing a fine of £4.4m for violations of the GDPR (the violations were pre-Brexit). The ICO found that Interserve had failed to put appropriate technical and organizational measures in place to secure personal data (in contravention of Articles 5(1)(f) […]
Read More… from ICO issue fine of £4.4 to Interserve for security failings
President Biden signed an Executive Order on Enhancing Safeguards for United States Signals Intelligence Activities (E.O.) directing the steps that the United States will take to implement the U.S. commitments under the European Union-U.S. Data Privacy Framework (EU-U.S. DPF) announced by President Biden and European Commission President von der Leyen in March of 2022. The […]
As your Article 27 Representative we will always help if you receive a SAR, RTE, or other data protection complaint. It is always best to avoid these all together but most companies will receive GDPR requests at some point. Disgruntled ex-employees, annoyed customers, malicious compensation-scammers are common sources of SARs and unfortunately these can result […]
We have said this previously but we are still seeing a huge number of Subject Access Requests [SARs]. A SAR is a request made by or on behalf of the data subjects which grants the right to obtain a copy of all the personal data that an organization has collected about them. These are pretty […]
Summary: The Right to Be Forgotten is one of the fundamental rights defined in GDPR. Also known as a Right to Erasure this principle defined in Article 17. It is vital that companies recognize these requests and understand how to deal with them. Most importantly the Right to Erasure is not an absolute right and […]
This 1 year period ICO has published very beneficial documents that are very important for the Data protection of the subjects and related to other topics. In this post will share chronologicaly the most important events month by month. April 2021 We have published guidance on the National Security Provisions in Part 3 of the DPA18 and […]
¿Cómo debe redactarse una solicitud de consentimiento? Las solicitudes de consentimiento deben ser destacadas, concisas, fáciles de entender y estar separadas de cualquier otra información, como las condiciones generales. El artículo 7, apartado 2, dice: "Si el consentimiento del interesado se da en el contexto de una declaración escrita que se refiera también a otros asuntos, la solicitud de consentimiento [...].
Read More... from ¿Cómo redactar una solicitud de consentimiento y qué información debe contener?
Hello Everyone, Short post today as an information to be very carefull while collecting and processing the data. In the last two weeks two very big cases happened and big fines were issued because of the companies non-compliant method of doing their business. One company was issued huge ammount of money for releasing data to […]
+44 1772 217800
+353 01 554
9700 
+1 303 317
5998