How to implement data protection globally

For reasons of cost and convenience, internationally operating companies in particular tend to adopt guidelines for their locations uniformly throughout the world. Especially with regard to data protection however, there are local differences that are difficult to implement in all regions. An example of this is the European Data Protection Regulation (GDPR), which is mostly supplemented by regional laws. A reasonable strategy should therefore define the principles of the company and at the same time respond to local differences at the respective locations. Continue reading

Successful preparation for the GDPR – a step plan for implementation

With the beginning of the legal validity of the EU General Data Protection Regulation (GDPR) in May 2018, companies in the European Union are called upon to fully implement this regulation. Many different pitfalls have to be considered and risks have to be measured. One way to ensure a clean implementation of the privacy policy is demonstrated by TaylorWessing in a blog post that describes successful preparation in six steps.

Continue reading

Is Brexit a looming threat to data protection?

Brexit could have a bigger impact on European companies than recently expected because the existing legal foundation for secure data traffic will expire after Brexit and respective agreements to fill this hole still have to take shape. Such an interpretation could at least be made due to a statement by the European Commission from 9th January, 2018, according to which the United Kingdom will become a third-country and there is no underlying adequacy agreement which would guarantee data protection in this case.

Continue reading

Take the CIPL/Avepoint 2nd Annual GDPR Organisational Readiness Survey now

With less than one year to go before the EU General Data Protection Regulation (GDPR) comes into force, the Centre for Information Policy Leadership at Hunton & Williams and AvePoint have launched the 2nd Annual GDPR Organisational Readiness Survey. Last year, over 220 predominantly multinational organisations participated in the study which focused on key areas of impact and change under the GDPR such as consent, legitimate interest, data portability, profiling, DPIAs, DPOs, data transfers and privacy management programmes. This year’s study revisits these important areas of impact and further considers additional topics. Continue reading

EDPD17 – video recap

European Data Protection Days – The Berlin Conference

The European Data Protection Days are a highlight and priority in many calendars. Often referred to as “The Berlin Conference”, EDPD welcomes data protection officers, experts, politicians and thought leaders for two days. See the video for more information and highlights from the 2017 conference.