Guernsey’s Office of the Data Protection Authority (‘ODPA’) published guidance on the right to data portability. In particular, the Guidance provides information on data portability requests including, relevant fees, the response timeframe and format of the request. In addition, the Guidance differentiates between data portability requests and subject access requests, and includes a case study […]
All data breach notification laws in one place. Navigate to a law overview by clicking in the interactive map below or clicking a link in the menu on the left side of the window. These overviews provide summary information on breach notification laws currently in effect. Law overviews are updated as changes to breach notification […]
The GDPR gives people the right not to be subject to solely automated decisions, including profiling, which have a legal or similarly significant effect on them. These provisions restrict when you can carry out this type of processing and give individuals specific rights in those cases.
These guidelines are concerned with the applicability of Article 6(1)(b) to processing of personal data in the context of contracts for online services, irrespective of how the services are financed. The guidelines will outline the elements of lawful processing under Article 6(1)(b) GDPR and consider the concept of ‘necessity’ as it applies to ’necessary for […]