This time of year is traditionally the time when we declutter our homes and remove what we don’t need. Sonia Cheng explains why the same principle should apply to data, particularly as the pandemic has led to the accumulation of information from new sources
The transparency requirements of GDPR are fuelling “micro-claims” for compensation, in addition to high-profile class action lawsuits. Stewart Room, preparing for his session at PrivSec Global, suggests the current system is creating perverse incentives and argues for a better solution
As remote working looks set to become the new normal, businesses need to ensure their corporate information and data protection is secure. In the first in a series of Covid-themed articles this week, Andy Beverley outlines some of the key considerations
A key principle of the GDPR is that personal data must be processed securely, using “appropriate technical and organisational measures” – the “security principle”. To meet this principle, organisations implement a variety of IT security technologies, all aimed at protecting information where it is stored and processed.
Abigail Dubiniecki, freelance lawyer and privacy professional, talks with PrivSec about the likely complications that will follow the invalidation of the Privacy Shield and the new terms of Standard Contractual Clauses (SCCs).
COVID-19 arrives just as the first omnibus privacy statute in the United States, the CCPA became effective. Since its January 1 effective date, we continue to wait for finalization of the CCPA regulations and enforcement that was slated for July 1.
On May 25 2018, the General Data Protection Regulation (GDPR) became the main legal framework for data protection in the EU. The new laws apply to any company offering goods or services to EU citizens and managing personal data.
Think back to the last business event you attended. You likely met new contacts and at some point may have said, “Here, drop me a line,” reaching into your pocket to produce your details embossed on a flashy, tactile card.
Under the new General Data Protection Regulation (“GDPR”), which will come into force on 25 May 2018, individuals will benefit from heightened rights in terms of their ability to request and access personal data from any entities holding such data about them.