Less than one month to the entering into force of the GDPR, the text (in all language versions) is still subject to changes, sometimes significantly. http-::data.consilium.europa.eu:doc:document:ST-8088-2018-INIT:en:pdf For more information and for advice on GDPR implementation, Francesca Giannoni-Crystal.
Several DPAs have issued guidance on how individuals can exercise their rights as data subjects vis-a-vis social media platforms. See for example: – ICO – United Kingdom: https://ico.org.uk… – Data Protection Commissioner – Ireland: https://dataprotection.ie… – Croatian Data Protection Agency: request for the protection of rights request for removing personal data from social networks reporting […]
The Information Commissioner Officer (ICO) – the U.K. Data Protection Authority – published several useful resource to help getting ready for the GDPR. Here is a list: GDPR myth busting blogs Guide to the General Data Protection Regulation Getting ready for the GDPR self assessment checklist GDPR FAQs Lawful basis interactive tool Advice service for […]
On March 20, 2018, the Centre for Information Policy Leadership (“CIPL”) issued a factsheet on the GDPR’s provisions that are most likely to be relevant for the negotiations of the proposed ePrivacy Regulation. The Factsheet explains key GDPR concepts relevant to the ePrivacy Regulation, including: definitions of GDPR’s terms, such as personal data, data processing and the role of […]
Finalised GDPR Guidelines – Guidelines on Data Protection Officers (DPO), more here; – Guidelines on the right to data portability, more here; – Guidelines for identifying a controller or processor’s Lead Supervisory Authority, more here; – Guidelines on Data Protection Impact Assessment (DPIA) and determining whether processing is “likely to result in a high risk”, […]
The Italian Council of Ministers preliminarily approved a legislative decree (in furtherance of Parliament’s delegation Law October 25 2017, no. 163), containing provisions to amend domestic law in compliance with the GDPR. In fact, effective May 25, 2018, Legislative Decree June 30, 2003 no. 196 will be abrogated and the GDPR will be immediately into […]
UPDATED Novembre 19, 2019 Article 30 GDPR requires each controller and each processor to maintain a record of processing activities under its responsibility which must be in writing (including electronic form). Article 30 details the minimum content of the record. Some DPA made available model forms and notes for keeping records of processing activities: the […]
On January 24, 2018 the EU Commission published a guidance to foster uniform application of the GDPR across the EU. The Commission also made available an online tool for SMEs (the tool was not working on January 25, 2018 but we are confident the error in the page will be solved soon: http://europa.eu/rapid/europa.eu/dataprotecti on) Here the EU Commission’s press release. […]
We have been reading some commentaries to the effect that the GDPR (General Data Protection Regulation) needs to be transposed with special legislation adopted in the several EU member states. That there will be legislation is true, but the statement is misleading. Make no mistake: the GDPR is an EU regulation, not a EU directive […]
Tom O’Connor examines the similarities and differences in the requirements for the collection, use and protection of information subject to the U.S. eDiscovery rules and the treatment of personal data under the GDPR. The full text is available at https://www.ediscovery.co…