I’ve seen this a bit too often lately: products that qualify themselves as ‘GDPR compliant’, falsely leaving the impression that by using that product, an organisation will be GDPR compliant. In particular some blockchain products like to label themselves as ‘GDPR compliant blockchain’ – as in the public opinion there are massive problems surrounding blockchain […]
Author: Silvan Jongerius
Silvan Jongerius FIP, CIPT, CIPP/e, is the Managing Partner and Founder of TechGDPR. He leads the team of data protection consultants and engages in key client projects as lead consultant.
Silvan has been recognized as Fellow of Information Privacy by the renowed IAPP, and is certified as by the IAPP as Certified Information Privacy Professional (Europe/GDPR), Certified Information Privacy Technologist (CIPT) and TÜV certified Data Protection Officer (Datenschutzbeauftragter).
GDPR’s Right to be Forgotten in Blockchain: it’s not black and white.
There have been many discussions about the big problem of the right to be forgotten (right to erasure, Article 17) under the GDPR. As blockchain generally is immutable, and the GDPR requires personal data to be deleted. Many people therefor conclude that it is impossible to store any kind of personal data on a blockchain. […]
The GDPR Canvas
The GDPR Canvas & how to use it Building on our experience of consulting technology companies with privacy and GDPR compliance, we are excited to release our GDPR Canvas publicly under a creative commons license. The GDPR Canvas is inspired by the Business Model Canvas by Alexander Osterwalder of Strategyzer. It was designed by TechGDPR to aid […]
Blockchain & DLT under the GDPR explained to the European Commission
Today, I had the opportunity to present the key issues of Blockchain & DLT under the GDPR to a delegation of the European Commission in Berlin. Below is a summarised version of the issues I presented. 1. Is the Opinion 05/2014 by Working Party 29 still valid? Article 29 Working Party issued comprehensive guidance on […]
One year of GDPR: GDPR enforcement and awareness
The General Data Protection Regulation (GDPR) came into force after years of debate and preparation. The European Commission started in January 2012 to set out plans for data protection reform across the European Union in order to make Europe ‘fit for the digital age’. Approved by the European Parliament in April 2016, the legislation came […]
Our first open GDPR Canvas workshop
On Thursday May 16th 2019, TechGDPR hosted it’s first open GDPR Canvas workshop: ‘Starting GDPR compliance with the GDPR Canvas’, for members of Factory Berlin. The GDPR Canvas Workshop is a workshop that is normally delivered within a team or organisation, but for this workshop we wanted to gain experience with the open format with […]
WiFi-Tracking and Retail Analytics under the GDPR
WiFi-tracking is used for many purposes, including producing heat-maps of spaces, counting passers-by and analyzing people movement and visits. This can be extremely useful for businesses to better understand the use of their space and how to optimize this, and it is already in wide use in shopping malls, airports and hotels all around the […]
Is total privacy GDPR compliant? Zcash report shows how “Privacy by Design” handling of personal data gets us close.
Last week, Forbes examined the promise of privacy in P4 protocol in the article (“Zcash Out To Prove Privacy Is Key To Crypto Adoption With GDPR-Complying Use Cases” by Darryn Pollock). Pollock’s article included a link to TechGDPR’s Zcash GDPR assessment. In addition to the article in Forbes, ZCash has published its own statement, as […]
The GDPR + Blockchain: Reflecting back and looking ahead
Looking back, 2018 was a year full of important developments, both for privacy and blockchain – the two main areas of TechGDPR’s specialisation. In privacy, the GDPR went into effect, we paid careful attention as the first fines were issued, and the very first guidance on blockchain came out. In blockchain, a lot of guidance […]
GDPR, Blockchain, and the Principles of Privacy by Design
Since the introduction of the GDPR we have dealt with many aspects of the regulation. What has emerged as one of the most interesting areas for me to work on is Privacy by Design (or “Data Protection by Design and by Default,” in the language of the GDPR). The simple requirement to implement privacy from […]
Do you need support on data protection, privacy or GDPR? TechGDPR can help.
Request your free consultation