In this issue, we explore the DORA application deadline and its interference with the GDPR; how to conduct an AI impact assessment or integrate it into your existing privacy risk management processes; what constitutes US-restricted data transfer to countries of concern; and what expectations customers have about their data; a Real-Time Bidding explainer; a Sky […]
Tag: International transfers
International transfers involve moving personal data across borders. The GDPR requires appropriate safeguards like Standard Contractual Clauses (SCCs) to ensure compliance and protect data privacy. Learn more about GDPR compliance and how TechGDPR can help you on your journey.
Feel free to reach out to TechGDPR directly to learn more!
International transfers involve moving personal data across borders. The GDPR requires appropriate safeguards like Standard Contractual Clauses (SCCs) to ensure compliance and protect data privacy. Learn more about GDPR compliance and how TechGDPR can help you on your journey.
Feel free to reach out to TechGDPR directly to learn more!
Data protection digest 1 – 15 Nov 2024: digital product liability, emerging genomics, surveillance databases
EU Product Liability The new Product Liability Directive has been published in the Official Journal of the European Union and will take effect in 20 days. The new law extends the definition of “product” to digital manufacturing files and software, (not excluding AI manufacturers in the future). Also, online platforms can be held liable for […]
Embracing the GDPR as a non-EU company
6 years after becoming enforceable, the GDPR has not died out in popularity as a conversation topic among board members. While is remains the elephant in the room for many a stakeholder, non-EU companies who have embraced its application and requirements are finding it much easier to remain contenders on the European market. This article […]
The Future of Responsible AI: The Essential Role of a Data Officer
EU Digital Compliance Landscape After long discussions and a feedback process, we finally have the AI Act. The AI Act covers major concerns such as the ethical use of AI, AI governance, and risk management for AI systems. The future of responsible AI now has a clear legal path. It is hard to capture all […]
Data protection digest 2 – 16 Sep 2024: New SCCs initiative, data asset deals, probabilistic method and GDPR
In this digest we look at the perception of the term privacy in the digital era, data protection measures when concluding “asset deals”, the new SCCs initiative for international transfers from the EU, the probability method and data accuracy, and much more. Stay up to date! Sign up to receive our fortnightly digest via email. […]
Data protection digest 18 Aug – 2 Sep 2024: Swiss-US data transfers, BCR guide, Clearview AI fine
In this digest issue, we explore the latest Clearview AI fine, the secure Swiss-US data transfers, the data controller’s violation of the GDPR as subject to collective actions, the privacy risks of e-shop apps, and a new privacy policy generator and BCR monitoring tool. Stay up to date! Sign up to receive our fortnightly digest […]
Does Server Location Really Matter Under GDPR? Understanding Data Localization in the Context of Data Protection Compliance
Many organizations wonder, “Does server location really matter under GDPR?”. This question arises from the complex landscape of data protection regulations. There is often a strong emphasis on the importance of the location of user data. However, in the context of the GDPR, data localization is not as important as many people think. Based on […]
Data protection digest 18 Mar – 02 Apr 2024: AI and DP standardisation, patient medical data, human factor in data security
The need for AI and data protection standardisation, best practices on customer and employee data protection, rules on restricted cross-border data transfers, tips for DPOs, CISOs, IT specialists, and much more in our latest digest. Stay tuned! Sign up to receive our fortnightly digest via email. AI and data protection standardisation The French CNIL elaborates […]
UK Restricted Transfers: Standard data protection clauses by the ICO
As organisations continue to navigate the complexities of data protection laws, staying abreast of key deadlines is paramount. One such deadline relates to organisations involved in restricted transfers of personal data under UK data protection law. The ICO set a critical deadline for organisations that transfer personal data outside the UK. This article explains what you […]
Data protection digest 18 Feb – 2 Mar 2024: web browsing data for sale, banking sector outsourcing, cybersecurity core 2.0
This issue highlights how web browsing data, non-anonymised according to America’s FTC, was sold worldwide in the Avast/Jumpshot case, the EDPB’s new enforcement action on the right of access, cloud outsourcing in the banking sector, the NIST’s new cybersecurity framework for all organisations, and federated learning analysis. Stay tuned! Sign up to receive our fortnightly […]