Recital 47 – Overriding legitimate interest
Recital 47 Overriding legitimate interest The legitimate interests of a controller, including those of a controller to which the personal data may be disclosed, or of a third party,…
Search Results for: legitimate interests
What is the LGPD? Brazil’s version of the GDPR
Brazil passed the General Data Protection Law in 2018, and it will come into effect February 2020. This article examines the GDPR vs. the LGPD, how it differs, and…
What is considered personal data under the EU GDPR?
The EU’s GDPR only applies to personal data, which is any piece of information that relates to an identifiable person. It’s crucial for any business with EU consumers to…
Privacy Policy
Privacy Policy Data collected on the basis of consent Upon your request and expression of consent, we collect the following data for the purpose of providing services to…
Art. 88 GDPR – Processing in the context of employment
Art. 88 GDPRProcessing in the context of employment Member States may, by law or by collective agreements, provide for more specific rules to ensure the protection of the rights…
Art. 49 GDPR – Derogations for specific situations
Art. 49 GDPR Derogations for specific situations In the absence of an adequacy decision pursuant to Article 45(3), or of appropriate safeguards pursuant to Article 46, including binding corporate…
Art. 40 GDPR – Codes of conduct
Art. 40 GDPR Codes of conduct The Member States, the supervisory authorities, the Board and the Commission shall encourage the drawing up of codes of conduct intended to contribute…
Art. 35 GDPR – Data protection impact assessment
Art. 35 GDPR Data protection impact assessment Where a type of processing in particular using new technologies, and taking into account the nature, scope, context and purposes of the…
Recital 113 – Transfers qualified as not repetitive and that only concern a limited number of data subjects
Recital 113 Transfers qualified as not repetitive and that only concern a limited number of data subjects Transfers which can be qualified as not repetitive and that only concern…
Recital 88 – Format and procedures of the notification
Recital 88 Format and procedures of the notification In setting detailed rules concerning the format and procedures applicable to the notification of personal data breaches, due consideration should be…
Recital 69 – Right to object
Recital 69 Right to object Where personal data might lawfully be processed because processing is necessary for the performance of a task carried out in the public interest or…
Art. 22 GDPR – Automated individual decision-making, including profiling
Art. 22 GDPRAutomated individual decision-making, including profiling The data subject shall have the right not to be subject to a decision based solely on automated processing, including profiling, which…
Art. 14 GDPR – Information to be provided where personal data have not been obtained from the data subject
Art. 14 GDPRInformation to be provided where personal data have not been obtained from the data subject Where personal data have not been obtained from the data subject, the…
Art. 13 GDPR – Information to be provided where personal data are collected from the data subject
Art. 13 GDPRInformation to be provided where personal data are collected from the data subject Where personal data relating to a data subject are collected from the data subject,…
Art. 6 GDPR – Lawfulness of processing
Art. 6 GDPR Lawfulness of processing Processing shall be lawful only if and to the extent that at least one of the following applies: the data subject has given…
Everything you need to know about the “Right to be forgotten”
Also known as the right to erasure, the GDPR gives individuals the right to ask organizations to delete their personal data. But organizations don’t always have to do it….
Data Protection Impact Assessment (DPIA)
How to conduct a Data Protection Impact Assessment (template included) A Data Protection Impact Assessment (DPIA) is required under the GDPR any time you begin a new project that…
Writing a GDPR-compliant privacy notice (template included)
Download a PDF version of this template here. Transparency and informing the public about how their data are being used are two basic goals of the GDPR. This article…
What are the GDPR consent requirements?
One easy way to avoid large GDPR fines is to always get permission from your users before using their personal data. This article explains the GDPR consent requirements to help you comply.
Recital 111 – Exceptions for certain cases of international transfers
Recital 111 Exceptions for certain cases of international transfers Provisions should be made for the possibility for transfers in certain circumstances where the data subject has given his or…
Art. 21 GDPR – Right to object
Art. 21 GDPR Right to object The data subject shall have the right to object, on grounds relating to his or her particular situation, at any time to processing…
Art. 9 GDPR – Processing of special categories of personal data
Art. 9 GDPRProcessing of special categories of personal data Processing of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and…
What is GDPR, the EU’s new data protection law?
What is the GDPR? Europe’s new data privacy and security law includes hundreds of pages’ worth of new requirements for organizations around the world. This GDPR overview will help…
How does the GDPR affect email?
The GDPR requires organizations to protect personal data in all its forms. It also changes the rules of consent and strengthens people’s privacy rights. In this article, we’ll explain…
