Blog

Data protection digest 1 – 15 Dec 2024: DORA application deadline, new Meta fine, AI impact assessment

Posted on December 18, 2024December 18, 2024 by Olya Vasylyk Category:Data Protection Digest

In this issue, we explore the DORA application deadline and its interference with the GDPR; how to conduct an AI impact assessment or integrate it into your existing privacy risk management processes; what constitutes US-restricted data transfer to countries of concern; and what expectations customers have about their data; a Real-Time Bidding explainer; a Sky […]

Don’t Miss Our Exclusive Webinar with Stewart Haynes, Former Information Commissioner

Posted on December 5, 2024December 5, 2024 by AJ Richter Category:Workshop

Join Us for a Live Discussion: Lifting the Regulatory Curtain TechGDPR is excited to invite you to a special live webinar featuring Stewart Haynes, our new Senior Consultant and former Information Commissioner, alongside our Managing Partner, Silvan Jongerius. This is your opportunity to gain direct insights from one of the most experienced voices in data […]

Data protection digest 16-30 Nov 2024: Electronic patient records as a holistic picture of your health?

Posted on December 3, 2024December 3, 2024 by Olya Vasylyk Category:Data Protection Digest

Electronic patient records (ePA) in Germany From 2025, people covered by health insurance will be able to use the electronic patient records, (ePA in German), voluntarily and free of charge. This record can digitally gather information about the person’s medical history in a single place. Patients will decide how long someone is granted access to […]

What to do after appointing a DPO

Posted on November 29, 2024November 29, 2024 by Kezia Vilawa Category:DPO

Appointing a Data Protection Officer (DPO) is a significant step in ensuring compliance with data protection regulations. However, this appointment does not absolve the company of its compliance responsibilities. In reality, the role of the officer is to guide and advise, not to shoulder the entire burden of compliance. As DPO for companies around the […]

Data protection digest 1 – 15 Nov 2024: digital product liability, emerging genomics, surveillance databases

Posted on November 19, 2024November 19, 2024 by Olya Vasylyk Category:Data Protection Digest

EU Product Liability The new Product Liability Directive has been published in the Official Journal of the European Union and will take effect in 20 days. The new law extends the definition of “product” to digital manufacturing files and software, (not excluding AI manufacturers in the future). Also, online platforms can be held liable for […]

Meet Stewart Haynes: former Information Commissioner and TechGDPR Senior Consultant

Posted on November 19, 2024November 19, 2024 by Silvan Jongerius Category:TechGDPR Updates

Stewart Haynes, a former Information Commissioner, has joined the TechGDPR team as a senior consultant. Stewart excels in complex regulatory reporting and remediation scenarios, helping clients approach these critical areas with clarity and precision. His guidance is invaluable for companies building or refining their privacy programs, preparing for potential regulatory interventions, or managing high-risk incidents. […]

Data protection digest 17 – 31 Oct 2024: clinical research service providers, non-for-profit, commercially available AI

Posted on November 2, 2024November 2, 2024 by Olya Vasylyk Category:Data Protection Digest

Non-for-Profit Updated privacy guidance for not-for-profit has been released by the Office of the Australian Information Commissioner. It includes a discussion on what to consider when engaging third-party providers, such as for fundraising, or software vendors. For instance, when entering into arrangements with third parties, your non-for-profit should take reasonable steps to ensure that the third […]

Embracing the GDPR as a non-EU company

Posted on October 21, 2024October 21, 2024 by Alex Carroll Category:Beyond EU, GDPR, Strategy

6 years after becoming enforceable, the GDPR has not died out in popularity as a conversation topic among board members. While is remains the elephant in the room for many a stakeholder, non-EU companies who have embraced its application and requirements are finding it much easier to remain contenders on the European market. This article […]

Data protection digest 2 – 16 Oct 2024: knowing your processors and sub-processors, automated driving, election technologies

Posted on October 17, 2024October 25, 2024 by Olya Vasylyk Category:Data Protection Digest

Reliance on processors and sub-processors The EDPB has issued an opinion on the interpretation of certain duties of controllers relying on processors and sub-processors, arising from Art. 28 of the GDPR, as well as the wording of controller-processor contracts. In particular, controllers should have information on the identity of all processors and sub-processors etc. readily […]

Ethical AI: How Data Officers Craft Policies for Fairness, Accountability, and Transparency

Posted on October 16, 2024October 16, 2024 by AJ Richter Category:Artificial Intelligence, Data Officer, Regulation

The use of artificial intelligence (AI) nowadays is pervasive and many organizations are attempting to develop their version of AI. The EU AI Act was recently passed in August 2024 after years of discussion between the European Commission and Parliament, and now it regulates the use and development of AI systems in the EU. The […]

Do you need support on data protection, privacy or GDPR? TechGDPR can help.

Contact Us

Thank You!

Thank You!