Right to rectification
According to GDPR Article 16, The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes
Archives: FAQs
DPO – Data Protection Officer
“DPO” is meaning a Data Protection Officer. The role of the data protection officer (DPO) is to ensure that organisation processes the personal data of its staff, customers, providers or any other individuals in compliance with the applicable
Does the GDPR affect direct marketing?
Digital marketing and direct marketing are based on the data that the company has collected, therefore marketing activities must comply with the GDPR as well. Consent must be obtained from the subjects and existing consent
Collecting data from children?
Consent from the parents is required when processing data of children under the age of 16 for online services.
Right to be informed
The individual has the right to be informed about how and why their personal data is being processed. Grounds for processing is usually explained when asking for the consent from the individual. Individual has a
Can data subject withdraw consent?
According to the GDPR, the data subject can withdraw their consent at any time. However, withdrawing the consent applies only to future processing of personal data, not to data that has already been processed. If
Difference between data controller and processor?
Data controller is the person or a company who defines the purpose, means and conditions of how personal data is being processed. Data processor processes personal data on behalf of the data controller and is
Responsibilities of the data protection officer (DPO)
The DPO has generally two main tasks. To monitor the GDPR compliance operations within the organisation and interact with the supervisory authority and the data subjects whose data is being processed. Data protection officer might
Do we need to comply if we process personal data manually instead of automated processing?
Article 4 (6) of the GDPR sets the definition for a ‘filing system’. If the personal data that the company processes manually is in structured form and the processing is conducted in a database, then
We do not charge for our services, do we need to comply?
All companies processing personal data must comply with the GDPR, regardless whether payment is charged or not.
