Appointing a Data Protection Officer (DPO) is a significant step in ensuring compliance with data protection regulations. However, this appointment does not absolve the company of its compliance responsibilities. In reality, the role of the officer is to guide and advise, not to shoulder the entire burden of compliance. As DPO for companies around the […]
Month: November 2024
Data protection digest 1 – 15 Nov 2024: digital product liability, emerging genomics, surveillance databases
EU Product Liability The new Product Liability Directive has been published in the Official Journal of the European Union and will take effect in 20 days. The new law extends the definition of “product” to digital manufacturing files and software, (not excluding AI manufacturers in the future). Also, online platforms can be held liable for […]
Meet Stewart Haynes: former Information Commissioner and TechGDPR Senior Consultant
Stewart Haynes, a former Information Commissioner, has joined the TechGDPR team as a senior consultant. Stewart excels in complex regulatory reporting and remediation scenarios, helping clients approach these critical areas with clarity and precision. His guidance is invaluable for companies building or refining their privacy programs, preparing for potential regulatory interventions, or managing high-risk incidents. […]
Data protection digest 17 – 31 Oct 2024: clinical research service providers, non-for-profit, commercially available AI
Non-for-Profit Updated privacy guidance for not-for-profit has been released by the Office of the Australian Information Commissioner. It includes a discussion on what to consider when engaging third-party providers, such as for fundraising, or software vendors. For instance, when entering into arrangements with third parties, your non-for-profit should take reasonable steps to ensure that the third […]