If you’re exploring a career in data protection or want to deepen your understanding of the EU’s General Data Protection Regulation (GDPR), you’ve likely heard of the CIPP/E certification exam. Offered by the International Association of Privacy Professionals (IAPP), this certification is a recognized benchmark for professionals in European data protection law. It is highly […]
Blog
Data protection digest 18 Mar – 2 Apr 2025: 23andMe bankruptcy case, digital spring cleaning
23andMe genetic data The 23andMe genetic company filed for bankruptcy in the US after struggling with weak demand for its ancestry testing kits and a 2023 data breach that damaged its reputation, Reuters reports. US officials had questioned what would happen to the genetic data collected by 23andMe, although the company’s privacy policies state that […]
How does the GDPR govern retention periods for businesses?
The General Data Protection Regulation (GDPR) establishes clear guidelines to prevent unnecessary data storage and ensure that personal information is retained only for as long as it serves a legitimate purpose. Storage limitation requires that companies justify and set our data retention periods while considering all legal obligations. Navigating legal requirements and transforming them into […]
AI Age Verification: Big Tech’s Risky Fix for GDPR Violations
One-third of GDPR fines being related to the misuse of children’s data. Big tech companies are yet to implement appropriate measures to safeguard them. In response, major platforms like Google and TikTok are planning to use AI age verification to deduce the age of their users. This is done by deducing their age based on […]
Data protection digest 3-17 Mar 2025: Combining FRIA with DPIA is possible, but not once the development of an AI system has begun
FRIA and DPIA: Before deploying a high-risk AI system, the organisations shall assess the impact that the use of such a system may have on fundamental rights, explains the Croatian data protection regulator AZOP. For this purpose, private and public entities shall carry out an assessment containing: If both a FRIA and a DPIA need […]
Self-Hosting AI: For Privacy, Compliance, and Cost Efficiency
Self-hosting AI models is the future of privacy and compliance. By hosting AI models on personal hardware, individuals and businesses can improve data security while meeting strict regulations like the General Data Protection Regulation (GDPR) and the Health Insurance Portability and Accountability Act (HIPAA). Most people use hosted artificial intelligence (AI) services such as ChatGPT […]
Data protection digest 16 Feb – 2 Mar 2025: Data Act to strengthen EU digital market, vigilance over US data transfers
The Data Act is almost here In February, the European Commission published a set of updated technical FAQs on the implementation of the legal provisions of the Data Act, applicable as soon as of 12 September 2025. It enhances data sharing and enables a fair distribution of data value by establishing clear rules related to […]
Data protection digest 1-15 Feb 2025: an employer can’t track alleged ‘inactivity’ of workers via screengrabs and constant video monitoring
Constant video monitoring and screengrabs at work A company that used software designed to account for times of alleged “inactivity” and grabbed frequent photos of its employees’ computer screens was fined 40,000 euros by the French data protection regulator CNIL. The staff members were also continuously videotaped, both visually and audibly. In particular, the company […]
Understanding the Five Pillars of the DORA
In today’s increasingly interconnected financial landscape, the need for robust digital resilience has never been greater. Recognizing this, the European Union has introduced the Digital Operational Resilience Act (DORA), a landmark regulation designed to standardize and strengthen ICT risk management across the financial sector. The DORA mandates specific technical standards, capabilities, and outcomes to ensure […]
Upcoming Webinar: The Trump Effect on EU-US Data Transfers
TechGDPR invites you to another insightful live discussion, The Trump Effect. Join our new Senior Consultant and former Information Commissioner, Stewart Haynes, alongside our Managing Partner, Silvan Jongerius, for an in-depth examination of how U.S. policies under the Trump administration have influenced EU-US data transfers and the broader regulatory landscape. Why You Should Attend Transatlantic […]
- 1
- 2
- 3
- …
- 18
- Next Page »
Do you need support on data protection, privacy or GDPR? TechGDPR can help.
Request your free consultation