Tag Archives for " EU "

GDPR: Five questions marketers must answer before May

As every marketer should be well aware, the new EU General Data Protection Regulation will be in force from 25 May – just over three months from now.

Marketers have had plenty of warnings about the penalties for breaching GDPR, and plenty of optimistic reassurances about the opportunity for improving customer relationships. But what are the most important things they actually have to do to ensure their use of personally identifiable information is within the law?

Source: GDPR: Five questions marketers must answer before May

Europe’s New Data Privacy Rules Nourish U.S. Privacy Tech Sector

That situation is changing radically, with the looming May 25 deadline for enforcement of the European Union’s General Data Protection Regulation (GDPR)—a sort of Magna Carta for the right of individuals to control the use of their own data. The sweeping new EU privacy protections apply to any company anywhere that holds data on any EU citizen—not just businesses located within the 28 EU member nations. And the maximum fine for violations—as much as 4 percent of a company’s global annual revenue—tends to concentrate the mind wonderfully on compliance.

Source: Xconomy: Europe’s New Data Privacy Rules Nourish U.S. Privacy Tech Sector

The General Data Protection Regulation Could Be A Big Opportunity

Ever since the European Union announced the General Data Protection Regulation (GDPR) — a sweeping new set of data privacy rules that will affect global firms that do business on European soil — much of the discussion has focused on its negative effects.

Source: ADPVoice: The General Data Protection Regulation Could Be A Big Opportunity. Here’s Why.

Ireland’s DPA releases GDPR guidelines and checklist

Ireland’s Data Protection Commissioner has released a guidelines and checklist template to assist organisations in ensuring compliance with the General Data Protection Regulation (GDPR). In particular documents provide guidance and assistance in creating data processing activities register, establishing lawful basis for processing data, data retention periods, ensuring data subject rights, data accuracy, transparency requirements, data security, data breaches and international data transfers.

Download templates:

Facebook, Google and Twitter to make their terms of services GDPR compliant

European Commission together with EU consumer authorities published the changes Facebook, Twitter and Google+ made to their terms of services, to align them with the EU consumer protection rules and to ensure the rapid removal of illegal commercial content upon notification.

These changes will benefit more than a quarter billion of EU consumers who use social media. They come as the result of a joint action by national enforcers of the Consumer Protection Cooperation (CPC) Network led by the French authorities and facilitated by the Commission, which started at the end of 2016.

Source: JUST Newsroom – Facebook, Google and Twitter accept to change their terms of services to make them customer-friendly and compliant with EU rules – European Commission

Box intros new services to help customers prepare for GDPR requirements

Box is rolling out new services that aim to help its customers comply with the European Union’s General Data Protection Regulation (GDPR) requirements that go into effect in May.

The cloud storage company is first launching an electronic self-service addendum that lists all of the approved legal mechanisms for data processing required by the GDPR. Once signed, Box customers can then provide the Data Processing Addendum (DPA) to third-party auditors to verify that their use of Box meets GDPR’s compliance requirements.

Source: Box intros new services to help customers prepare for GDPR requirements | ZDNet

How to build and maintain a data governance system

While data mapping and inventory, and establishing a lawful basis for processing, are logically the first two steps on the road to GDPR compliance, these activities require coordination among many people throughout the organization to be performed by at least one person who is both knowledgeable about the GDPR and capable of project management. Whether that person’s title is DPO or not will depend on additional analysis of the relevant GDPR provisions.

Source: Top 10 Operational Responses to the GDPR – Part 3: Build and maintain a data governance system

1 2 3 50
>