controller
CJEU’s Advocate General Issues Opinion on Concept of Controller, Joint Controller, Processor, and Administrative Fines
Advocate General released an opinion on the concepts of “controller”, “joint controller” and “processor”, and also liability system established by the GDPR.
German court rules CEO to be held personally liable for data privacy violations
German court decided that a CEO was personally liable for a data privacy breach after they hired a detective to investigate possible criminal acts by the plaintiff.
Guidelines 05/2021 on the Interplay between the application of Article 3 and the provisions on international transfers as per Chapter V of the GDPR
EDPB released draft guidelines on the interplay between GDPR Article 3 (territorial scope) and Chapter V (restrictions on international data transfers).
Opinion 06/2014 on the notion of legitimate interests of the data controller under Article 7 of Directive 95/46/EC
This Opinion analyses the criteria set down in Article 7 of Directive 95/46/EC for making data processing legitimate.
How the Legitimate Interest Ground for Processing Enables Responsible Data Use and Innovation
The Paper explains the growing importance of the legitimate interests legal basis for organizations, whether for routine or more complex and innovative data processing activities.
Third Party Risk Management: Regulatory Developments and the Impact on Vendor Risk Management (VRM)
This panel will discuss the relationship between data protection regulations and enterprise organization’s work on Third Party Risk Management.
ECHR decisions related to Personal data protection (May 2021)
Compilation of European Court of Human Rights decisions related to personal data protection. Factsheet lists all relevant cases and provides short insight into case and decision.
Data mapping: a step-by-step guide
In this guide, we will go through the requirements for a controller’s RoPA or “Record of Processing Activities”.
Guidance for Retailers Issuing e-Receipts
The DPC has produced guidance around the use of e-receipts to assist retailers adhere to best practice in relation to e-receipts and electronic direct marketing.
A guide to ICO audits
This document outlines how ICO will carry out data protection audits in organisations.
Understanding the Balancing Act Behind The Legitimate Interest Of The Controller Ground: A Pragmatic Approach
Analysis of concept of legitimate interest of the controller in GDPR, Directive 95/46/EC and the interpretations of by the CJEU and Article 29 Working Party.