EU Health sector The Commission presented an EU Action Plan to improve health sector cybersecurity. It will include hospitals, clinics, care homes, rehabilitation centres, various healthcare providers, the pharmaceutical, medical and biotechnology industries, medical device manufacturers, and health research institutions. A significant challenge for the cybersecurity of the health sector is the intersection of information […]
Tag: health-related data
Health-related data includes information about an individual’s physical or mental health. The GDPR classifies this as sensitive data, requiring explicit consent or legal justification for processing. Learn more about GDPR compliance for health-tech and eHealth companies and how TechGDPR can help.
Feel free to reach out to TechGDPR directly to learn more!
Health-related data includes information about an individual’s physical or mental health. The GDPR classifies this as sensitive data, requiring explicit consent or legal justification for processing. Learn more about GDPR compliance for health-tech and eHealth companies and how TechGDPR can help.
Feel free to reach out to TechGDPR directly to learn more!
Data protection digest 18 Apr – 02 May 2024: EU-US redress mechanism and European Health Data Space taking shape
As part of the new EU-US redress mechanism, data subjects in the EU/EEA will have access to specific complaint forms in the event that they suspect violations regarding their data transferred to the US, whether related to commerce or unlawful access to it by signals intelligence activities. Stay tuned! Sign up to receive our fortnightly […]
Data protection digest 3 – 17 Apr 2024: non-material damage dilemma when losing control of your data
In this issue, an alternative to the pay or okay consent model, the right for compensation for non-material damage, FISA reauthorisation and GDPR enforcement procedural rules updates, AI development and personal data… Stay tuned! Sign up to receive our fortnightly digest via email. Non-material damage under the GDPR In one of its recent decisions the […]
Data protection digest 18 Mar – 02 Apr 2024: AI and DP standardisation, patient medical data, human factor in data security
The need for AI and data protection standardisation, best practices on customer and employee data protection, rules on restricted cross-border data transfers, tips for DPOs, CISOs, IT specialists, and much more in our latest digest. Stay tuned! Sign up to receive our fortnightly digest via email. AI and data protection standardisation The French CNIL elaborates […]
Data protection digest 3-17 Mar 2024: Personal data gaps in information systems, TC string, mass data collectors
Information systems, their security, and personal data gaps are the focus of our latest digest. Also requiring your attention are invalid consent in cookie walls, the ‘pay or okay’ subscription model, Open AI “Sora” data practices, and the crackdown on mass data collectors Stay tuned! Sign up to receive our fortnightly digest via email. Personal […]
Data protection digest 3-16 Feb 2024: Sneakily changing terms of service and privacy policy won’t help your business
In this issue, you will find that America’s FTC is warning against retroactively changing terms of service or privacy policy. Palantir running the NHS’s new data platform in the UK, and envisaged changes to the EU GDPR enforcement framework and new dispute resolution mechanisms are also in focus. Sign up to receive our fortnightly digest […]
Data protection digest 16 Nov – 1 Dec 2023: APIs methodology, customer data minimisation, and digital mobility observatory
In this issue, you will find data protection solutions for complex data-sharing projects for both public and private actors, such as the latest APIs methodology, as well as a variety of official guidance on how to comply with GDPR requirements when it comes to innovation, research, digitisation and digital business development. Official guidance APIs methodology: […]
Data protection digest 2 – 17 October 2023: DPOs duties and methodology should be clarified – latest study
This issue highlights DPOs duties in the context of ongoing compliance with the GDPR, and the continuing saga of the US adequacy decision. Also of note are monitoring and privacy issues in the workplace. Official guidance DPOs duties: The Swedish data protection agency published the results of a coordinated investigation, initiated by the EDPB, on […]
Data protection digest 17 May – 1 June 2023: amassing data for machine learning is ‘no excuse for breaking the law’
TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes ‘Machine learning is no excuse to break the law’: The US Federal Trade Commission alleged that Amazon, (Alexa voice assistant), kept kids’ data indefinitely to further refine its voice recognition algorithm. If approved by the federal court, on top of a multimillion […]
Do you need support on data protection, privacy or GDPR? TechGDPR can help.
Request your free consultation