Uncategorised

Fairness in the processing of personal data should create a balance between the controller and the data subject. In practice, this can be quite challenging!

Why an NGO thinks the Irish data protection authority is not doing its job as required by law and what it is doing about it.

How can companies verify the identity of data subjects when they exercise their data protection rights according to the GDPR? A recent decision shows in particular which measures are still considered appropriate.

If your cookie banner does not comply with the regulations of the GDPR, a complaint from noyb could soon land on your table. We show you how to avoid fines and damage to your company’s image.

The CJEU ruling and its impact on companies concluding contracts with customers to obtain consent.

What do companies have to pay attention to when exporting personal data to a third country? A summary and analysis of the EDPB’s recommendations!

Mass data retention can only be made mandatory by EU Member States if public security is threatened. What are the consequences for companies in the communication sector?

If a service provider processes personal data on behalf of a controller both sides have to comply with several obligations of the GDPR. Above all, they must conclude a contract defining the rights and obligations of all involved.

The requirements a consent solution has to meet to be GDPR-compliant, the new but expected opinion of the EDPB, and a practical checklist for website owners.

When is there a joint controllership according to GDPR? How is it different from other forms of collaboration? What do joint controllers have to consider when processing data together? An overview!