fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " compliance "

EU heads of state issue warning over Facebook data case

The 28 EU heads of state issued a warning shot on Thursday (22 March) over allegations that 50 million Facebook users’ data was harvested without their consent to influence political campaigns.

“Social networks and digital platforms need to guarantee transparent practices and full protection of citizens’ privacy and personal data,” read conclusions from the leaders’ discussion at a European Council summit in Brussels.

Source: EU heads of state issue warning over Facebook data case – EURACTIV.com

Forecasting Consent Threat Level in Europe

Consent for online data collection is a squirrelly topic in Europe right now. Leaving aside for the moment whether or not consent ‘aught’ to be required, and if so, how sensitive the data and its use might need to be to warrant this abrasive step, companies are trying to understand the baseline requirements so they can plan and build around them.

Unfortunately, not only are the rules a bit unclear, but close observers also expect the rules to change substantially over the next two years.

Source: Forecasting Consent Threat Level in Europe – The Lucid Privacy Group

61% of professionals worried about GDPR impact on recruiting and hiring

A recent study found that while 70% of compliance professionals feel that they’ll be ready for the May 25 GDPR deadline, doubts loom.

Of those that did feel ready for GDPR, it didn’t come without a cost. Roughly a third said they had invested “significant time and resources” into GDPR compliance, and 73% said they had enlisted the help of legal counsel in the process, according to a press release.

Source: 61% of professionals worried about GDPR impact on recruiting and hiring – TechRepublic

GDPR Compliance Requires Looking at the Big Customer Data Picture

Imagine the impact an organization would feel if it was legally obligated to fulfill 200 complex and comprehensive data requests from clients across numerous countries and data sources every day. Operationalizing this at such a scale would seem impossible and would require a significant investment of additional staff, budget and time.

Many organizations may believe they will never face this type of challenge. But conservative estimates of the impact that the European Union’s General Data Protection Regulation (GDPR) data subject rights will have on companies storing large volumes of private client data show us that this scenario is a very real prospect.

Source: GDPR Compliance Requires Looking at the Big Customer Data Picture

Companies rushing to hire data protection officers pre-GDPR

With the General Data Protection Regulation (GDPR) set to go into effect at the end of May, companies are hiring experienced staff and data protection officers.

However according to new research, 25 percent of all vacancies have been posted in 2018 which shows that many businesses have left compliance to the last minute.

Source: Companies rushing to hire data protection officers pre-GDPR | ITProPortal

IAB’s proposed framework for GDPR criticized

A second publisher-side advocate has come out against the Interactive Advertising Bureau (IAB)’s proposed consent framework.

Jason Kint is the CEO of Digital Content Next, a New York City-based trade association of about 70 premium publishers in the US and Europe, including The New York Times, ESPN, The Washington Post, CBS, BBC, PBS and Financial Times.

Source: Publishers’ trade association on IAB’s proposed framework for GDPR: ‘A non-starter’

UK’s DPA promises regulatory sandbox for digital innovations

Businesses developing innovative digital products and services will be able to test that their solutions comply with data protection laws under a new scheme promised by the UK’s Information Commissioner’s Office (ICO).

“The ICO sandbox will enable organisations to develop innovative digital products and services, whilst engaging with the regulator, ensuring that appropriate protections and safeguards are in place,” the strategy paper said. “As part of the sandbox process the ICO would provide advice on mitigating risks and data protection by design.”

Source: Data protection watchdog promises regulatory sandbox for digital innovations

Why the GDPR Is Actually a Good Thing for Brands

In less than four months, the European Union data regulator will begin enforcing the EU General Data Protection Regulation (GDPR) to strengthen the security and protection of EU residents’ personal data. Companies that don’t comply with the GDPR not only risk losing their customers’ trust, but they could also face fines of €20 million or 4 percent of global annual revenue.

Like many regulations, the GDPR is not an easy to understand or practical manual for how brands should go about protecting their customers’ data. Therefore, figuring out how to interpret it and making changes across your organization to adhere to the regulation will be an expensive undertaking on its own. The IAPP and EY predict that Fortune’s Global 500 companies will spend a combined $7.8 billion working to achieve GDPR compliance.

Source: Why the GDPR Is Actually a Good Thing for Brands – Adweek

Mar Tech Preps As GDPR Looms

For mar tech companies, General Data Protection Regulation (GDPR) preparation starts by acknowledging that they handle personal data.

Many will insist it’s all de-identified and anonymized, said Omer Tene, VP and chief knowledge officer at the International Association of Privacy Professionals. “But drill a bit deeper and you’ll find that while they might not have direct identifiers like a person’s name or social security number, they do collect, process and store personal data under GDPR,” he said.

Source: Mar Tech Preps As GDPR Looms | AdExchanger

>