The Ideal GDPR EU Representative: Navigating Article 27

GDPR, working on a laptop

The EU General Data Protection Regulation (GDPR) has introduced several requirements for organizations based outside of the European Union (EU) that process the personal data of EU data subjects. One such requirement is the appointment of an EU representative. This representative acts as a point of contact for data subjects and EU data protection authorities, […]

Read More… from The Ideal GDPR EU Representative: Navigating Article 27

Comparing GDPR with Asia’s Data Protection Legislation

data protection regulations, GDPR and Asia's data protection laws

What are the similarities and differences between GDPR and the data protection regulations enacted in some Asian states? We look at the situation in Singapore, Japan and APEC. Data is a global concern. When an individual in Tokyo can have their data processed in Dusseldorf by a company incorporated in Austin, knowing which data protection […]

Read More… from Comparing GDPR with Asia’s Data Protection Legislation

Decoding GDPR: Your Questions Answered

How do you obtain valid consent under GDPR? What level of data security is ‘secure’? How long should you keep hold of personal data? In this post, we answer some of your most frequently asked GDPR questions. What’s the difference between a data controller and a data processor, and how does this affect compliance? There’s […]

Read More… from Decoding GDPR: Your Questions Answered

Exploring Data Protection Beyond GDPR – What You Need to Know About NIS2 Directive

Data protection laws are constantly changing in today’s world, so you can never be sure that you are up-to-date. There are so many of them that it’s sometimes hard to keep up with all. So, let’s introduce you gradually to some of the most important ones. Taking a look at the NIS2 Directive from our […]

Read More… from Exploring Data Protection Beyond GDPR – What You Need to Know About NIS2 Directive

Finally Unlocking Transatlantic Data Flow: How the Adequacy Decision Impacts US and EU Companies

What is the adequacy decision for the EU-US Data Privacy Framework? An adequacy decision made by the European Commission under the General Data Protection Regulation (GDPR) determines whether a third country provides a level of data protection that is essentially equivalent to that guaranteed within the European Union.  The decision is based on a comprehensive […]

Read More… from Finally Unlocking Transatlantic Data Flow: How the Adequacy Decision Impacts US and EU Companies

Exciting news: Consultancy Panel is Live now

Hi all, Hope that you are having a wonderful week. We would like to give you some exciting news.   Our Consultancy Panel is now LIVE and ready to be used by you now. If you need help with any GDPR question or other Data Protection issue you can very easily raise a job request on the panel […]

Read More… from Exciting news: Consultancy Panel is Live now

What is a personal data breach?

Many companies don’t take data privacy protection seriously until a data breach occurs.A data breach is the worst nightmare that can happen to a company.If you’ve ever faced a data breach, you will understand the difficulties that you might face without a robust protection. ICO thoroughly explains what a personal data breach is and how […]

Read More… from What is a personal data breach?

Principle (c): Data minimisation

What is the data minimisation principle? Article 5(1)(c) says: “1. Personal data shall be: (c) adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (data minimisation)” So you should identify the minimum amount of personal data you need to fulfil your purpose. You should hold that […]

Read More… from Principle (c): Data minimisation

EU Commission’s approval of the UK’s adequacy

The EU Commission has announced on 28.06.2021 that adequacy decisions for the UK have been approved. This means the EU has determined the UK’s data protection laws to be robust enough to ensure data can safely flow to the UK from the EU (and EEA). Approved adequacy means that businesses can continue to receive data […]

Read More… from EU Commission’s approval of the UK’s adequacy

What Does GDPR Mean For Companies Based Outside The EU?

The implications for companies based outside the EU are exactly the same as those for EU countries, if they process personal data from the EU. That’s because GDPR applies to the personal data of people based in the EU. If you want to process it, e.g. to sell to customers in the EU, you have […]

Read More… from What Does GDPR Mean For Companies Based Outside The EU?