The European Commission concluded that the United States ensures adequate protection for personal data transferred from the EU to U.S. companies under the EU-U.S. Data Privacy Framework (‘DPF’). The Commission’s decision already…

Introduction Data privacy and security are of utmost concern in the digital era of today, especially when it comes to data protection regulations like the GDPR, CPPA/CPRA, POPIA, nFADP with…

What is a Data Processing Agreement (DPA)? A Data Processing Agreement (DPA) is a legally binding document to be entered into between the controller and the processor in writing or electronic form.…

Direct marketing includes text messages (SMS) and emails that a customer receives from a product or service provider. But activities of direct marketing may include multiple steps:  collecting personal data…

The GDPR has put strict rules in place, when it comes to data transfer to third countries or international organizations. Which countries are third countries? Third countries are territories outside: EU,…

What are the records of processing activities (ROPA)? Article 30 of the EU General Data Protection Regulation (GDPR) requires organisations to maintain internal records, which contain the information of all…

In this article, we will introduce you to some useful GDPR software tools which may help you reach GDPR compliance and maintain it. We will focus on tools that are…

What is Data Breach? According to General Data Protection Regulation (GDPR), a personal data breach is a security incident that results in the accidental or unlawful destruction, loss, alteration, unauthorized…

Data Protection Authorities (DPA) Data Protection Authorities (DPA) are independent public authorities that supervise, through investigative and corrective powers, the application of the GDPR. They provide expert advice on data…

This is a simple GDPR compliance checklist for data controllers that you can use to ensure you have considered most important aspects of the General Data Protection Regulation.  It will allow…