Uncategorised

Why an NGO thinks the Irish data protection authority is not doing its job as required by law and what it is doing about it.

How can companies verify the identity of data subjects when they exercise their data protection rights according to the GDPR? A recent decision shows in particular which measures are still considered appropriate.

In its guidelines, the EDPB explains which forms of dark patterns should be avoided under data protection law.

When exactly do data subjects have the right of access and how must data controllers deal with such requests?

If your cookie banner does not comply with the regulations of the GDPR, a complaint from noyb could soon land on your table. We show you how to avoid fines and damage to your company’s image.

The CJEU ruling and its impact on companies concluding contracts with customers to obtain consent.

What do companies have to pay attention to when exporting personal data to a third country? A summary and analysis of the EDPB’s recommendations!

Mass data retention can only be made mandatory by EU Member States if public security is threatened. What are the consequences for companies in the communication sector?

If you provide services likely to be accessed by children in the UK, the Children’s Code will apply. But what regulations need to be adhered to? What do companies have to do to achieve compliance? A practical guide.

If a service provider processes personal data on behalf of a controller both sides have to comply with several obligations of the GDPR. Above all, they must conclude a contract defining the rights and obligations of all involved.