On October 22, 2018, the Future of Privacy Forum (FPF), the European Federation of Pharmaceutical Industries and Associations (EFPIA), and the Centre for Information Policy Leadership (CIPL) hosted a workshop in Brussels, “Can GDPR Work for Health Scientific Research?,” to discuss the processing of personal data for health scientific research purposes under the European Union’s […]
The aim of the guidelines is to provide guidance on how to interpret and implement the provisions of Article 43 of the GDPR. In particular, they aim to help Member States, supervisory authorities and national accreditation bodies establish a consistent, harmonised baseline for the accreditation of certification bodies that issue certification in accordance with the […]
This guide explains what profiling is, the legal frameworks that regulate it, and why conducting profiling lawfully is both necessary to comply with fundamental rights and crucial for effective policing and border management. The guide also provides practical guidance on how to avoid unlawful profiling in police and border management operations.
Access Now presents A user guide to data protection in the European Union – Your rights and how to exercise them to help you exercise your right to data protection. This guide gives you information about the rights encompassed under the EU law on data protection as well as information on how to use these […]
In connection with the EU General Data Protection Regulation (GDPR), many companies are wondering how to implement a “data deletion policy”. This article describes the essential steps that companies need to undertake when preparing a GDPR-compliant data deletion policy and the associated documentation.
DataGuidance, in collaboration with Bird & Bird and Workday, hosted a complimentary webinar focusing on data protection & cloud computing. During the webinar, our panel of expert speakers discussed a cloud/SaaS case study, navigating the data protection aspects arising for customers, SaaS and cloud infrastructure providers, including transfer of data abroad, liability for damages and […]
Through a common interpretation by data protection authorities in the EU, these guidelines seek to ensure a consistent application of the GDPR when assessing whether particular processing by a controller or a processor falls within the scope of the new EU legal framework. In these guidelines, the EDPB sets out and clarifies the criteria for determining the […]
The list is intended to encompass both national and cross-border data processing and reflects feedback received during public consultation. The list has also been approved by the European Data Protection Board (EDPB) where it includes processing operations relating to the provision of goods and services to individuals or the monitoring of their behaviour in several Member States or which […]