Tag Archives for " DPA "

UK Privacy Regulator Open to Self-Certification under GDPR

Organizations in Europe may eventually be able to self-certify that they are compliant with the EU’s General Data Protection Regulation, an official at the U.K.’s independent privacy watchdog said. But at the moment there is no such thing as GDPR certification; there is only compliance that you can work toward.

Source: GDPR: UK Privacy Regulator Open to Self-Certification

Irish data chief finds Yahoo broke EU law in breach

Irish Data Protection Commission (DPC) issued a statement that Yahoo broke EU law by failing to protect user information in Europe’s largest ever data breach that happened back in 2014. However, DPC issued no penalty against the company.

Source: Irish data chief finds Yahoo broke EU law in breach, issues no penalty – POLITICO

GDPR enforcement: what we can expect from Europe’s data protection authorities

The General Data Protection Regulation (GDPR) gives regulators in Europe more teeth with which to enforce data protection law, but businesses can expect their attitudes towards enforcement and areas of focus to differ.

Source: GDPR enforcement: what we can expect from Europe’s data protection authorities

Sweden’s open society is clashing with EU privacy law, and regulators are frustrated

While the General Data Protection Regulation will this week come into effect across the European Union, some companies in Sweden have nothing to fear — for now at least — thanks to a peculiarity of Swedish free-expression law.

Source: Sweden’s open society is clashing with EU privacy law, and regulators are frustrated

CNIL updates its PIA tool

French data protection authority CNIl has updated its PIA software to make the privacy impact assessment more practical and to foster collaboration between stakeholders.

The new features cover mainly the creation of the PIA report and on the tool’s workflow:

  • it is now possible to filter the information to be shown in the report;
  • the PIA’s visual elements (risk overview, risk mapping, action plan overview) are now visible on the report page and available for download;
  • the action plan can be downloaded in csv format in order to easily follow up on its implementation and/or to include it in existing internal project management processes;
  • several improvements were made to the workflow and contextual information was enhanced, in order to clarify the PIA steps.

Source: May 2018 updates for the PIA tool

GDPR offers tech providers an opportunity to develop compliance tools

There is an opportunity for technology providers to develop new tools to help businesses comply with their legal obligations under the General Data Protection Regulation (GDPR).

The good news for technology companies considering new data protection compliance tools is that a new regulatory sandbox for digital innovations is to be established by the UK’s data protection watchdog, the Information Commissioner’s Office (ICO).

Source: GDPR offers tech providers an opportunity to develop compliance tools

CNIL issues guidelines to companies for GDPR compliance

The General Data Protection Regulation (GDPR) will come into effect on May 25th, and companies are expected to start implementing measures for compliance with the new data protection rules. In this context, the French data protection authority (CNIL) has recently published guidelines exposing its strategy on how it expects companies to comply with the GDPR.

Source: CNIL issues guidelines to companies for GDPR compliance

Don’t relax just because some EU regulators aren’t ready for GDPR

In May 25th the European Union’s tough privacy law known as the General Data Protection Regulation takes effect, with some experts predicting turmoil because many businesses in and outside the union who collect personal data on EU residents aren’t entirely ready. However, regulators aren’t ready either, suggests latest surveys.

Good news for businesses worried they may get hammered within 24 hours of the law coming into effect? No, says, Canadian privacy expert Ann Cavoukian: “It’s not that Europe isn’t ready for the GDPR, it’s just that they’re under-resourced, as is the case in most jurisdictions.”

Source: Don’t relax just because some EU regulators aren’t ready for GDPR: Cavoukian | IT World Canada News

1 2 3 19
>