This is a simple GDPR compliance checklist for controllers that you can use to ensure you have considered most important aspects of the GDPR. Before starting, you should first determine whether you process personal data
What are ‘controllers’ and ‘processors’? With this short and simple article, we will try to explain the basics of controllers and processors. Controllers are the main decision-makers – they exercise overall control over the purposes
It’s practically not possible to run a business without processing personal data and exchanging it with other businesses. It may be website analytics software, cloud storage, CRM or marketing platform, and whether you are controller,
As we see every day, most companies and organisations still keep their Records of Processing Activities in spreadsheets. Through our experience, we have seen a lot of different formats and approaches. Often such spreadsheets don’t
In the light of the recent ruling of the European Court of Justice, website owners have to bear in mind their data protection responsibilities when using plugins on their websites. This case concerns the German
A year after GDPR came into force, the Lithuanian Data Protection Authority (VDAI) has issued its first administrative fine. UAB ‘Mister Tango’, a company that provides financial operation services globally, was fined 61,500 EUR in respect of
An article was published recently in the Helsingin Salomat about the Finnish Data Protection Authority who had ordered a payment and financing solution company to correct its data processing practises. The Finnish DPA started an investigation
In light of the latest survey conducted by the CPO Magazine, we are looking into the role of the Data Protection Officer (DPO). In this article, you will find answers to questions like who is a
Just recently, a report was published based on a survey of 252 global privacy professionals working for a wide range of organizations across 14 different industries. It came out from the report that only 1
What do companies have to include in the records of processing activities? GDPR requires companies to keep an internal record, which contains the information of all personal data processing activities carried out by the company.
Your e-mail address is only used to send you our newsletter and information about the activities of GDPR Register. You can always use the unsubscribe link included in the mail.
