Appointing a Data Protection Officer (DPO) is a significant step in ensuring compliance with data protection regulations. However, this appointment does not absolve the company of its compliance responsibilities. In reality, the role of the officer is to guide and advise, not to shoulder the entire burden of compliance. As DPO for companies around the […]
Author: Kezia Vilawa
Kezia Vilawa (LL.M) is a Nigerian-trained Lawyer with a proven history of working in data protection and interested in real estate, corporate governance and administration. She is currently an Associate Consultant, having obtained a master’s degree in Intellectual Property Law in Germany where she developed interest in the EU GDPR and data protection.
Her work description spans across privacy contract negotiation, legal drafting for privacy and property transactions, regulatory compliance, the creation and maintenance of ROPA (Records of Data Processing Activities), data subject requests (DSR) handling, DPAs, data sharing agreements, GDPR training, reporting on current state of GDPR compliance. litigation, customer service and real estate agency.
Difference between Fundamental Rights Impact Assessment & Data Protection Impact Assessment
Through the AI Act, the EU seeks to ensure that AI systems used within the Union are safe and transparent. The EU AI Act provides a regulatory framework focusing on safeguarding fundamental rights, in relation to high-risk AI systems. Companies making use of AI, regardless of their size or industry, must now comply with the […]
UK Restricted Transfers: Standard data protection clauses by the ICO
As organisations continue to navigate the complexities of data protection laws, staying abreast of key deadlines is paramount. One such deadline relates to organisations involved in restricted transfers of personal data under UK data protection law. The ICO set a critical deadline for organisations that transfer personal data outside the UK. This article explains what you […]
Misconceptions about the role of a Data Protection Officer (DPO)
For many organisations, the appointment of a DPO has become mandatory. Although Articles 37 to 39 of the GDPR make provisions for the designation, position and tasks of a DPO, somee misconceptions still exist about who needs one, who can be one and what kind of tasks a DPO can undertake. Who is a DPO? […]
Hardware identifiers: Is an IMEI number personal data?
Elements of personal data With the introduction of the GDPR in 2018, data protection has become a popular topic both from a legal and technical perspective. The importance of efforts around privacy and data protection is personal data and its protection. Under the EU GDPR, there are key elements in the definition of personal data. […]
EU-US data transfers: US Executive Order on Enhancing Safeguards for United States Signals Intelligence Activities and the impact on organizational GDPR compliance.
It is no longer news that EU-US data transfers have become increasingly challenging given the invalidation of the EU-US Privacy Shield Framework in 2020. Since then, companies have had to rely on standard contractual clauses and in other cases, data subjects have had to give consent for such transfers to happen knowing the risk of […]
Do you need support on data protection, privacy or GDPR? TechGDPR can help.
Request your free consultation