In addition to data protection, the EU’s General Data Protection Regulation requires businesses to ensure consumers can exercise their data privacy rights. But first, individuals must know these rights.
We asked 716 small business leaders in Europe about their GDPR compliance. Their answers suggest widespread ignorance about data security tools and loose adherence to the law’s key privacy…
The UK Information Commissioner’s Office issued a massive judgment against a company for illegal data sharing. Here’s how to avoid the same fate.
Using GDPR-compliant services in your organization saves time and limits your exposure to data breaches and regulatory penalties.
The EU General Data Protection Regulation also requires companies outside the European Union to safeguard personal data. This GDPR compliance checklist covers tips specifically for US companies.
Ireland is investigating big tech companies like Facebook and Apple for GDPR violations. A new Ireland GDPR report offers lessons for small businesses too.
The EU General Data Protection Regulation isn’t just about data protection. Here’s what businesses need to know about data privacy in the GDPR.
Whether it’s an email client, a cloud storage service, or website analytics software, you must have a data processing agreement with each of these services to achieve GDPR compliance.
One easy way to avoid large GDPR fines is to always get permission from your users before using their personal data. This article explains the GDPR consent requirements to help you comply.
October marked six months under the new GDPR regulations. The findings from this initial period suggest that consumers are increasingly holding companies accountable for proper data security and that…
Under certain conditions, the GDPR applies to companies that are not in Europe. In this article, we’ll explain when and how the GDPR applies outside the EU. The European…
Billions of people have had their personal information breached and abused after entrusting it to companies online. The GDPR is the most ambitious regulatory effort to make sure this…
Art. 99 GDPR Entry into force and application This Regulation shall enter into force on the twentieth day following that of its publication in the Official Journal of the…
Art. 98 GDPR Review of other Union legal acts on data protection The Commission shall, if appropriate, submit legislative proposals with a view to amending other Union legal acts…
Art. 97 GDPR Commission reports By 25 May 2020 and every four years thereafter, the Commission shall submit a report on the evaluation and review of this Regulation to…
Art. 96 GDPRRelationship with previously concluded Agreements International agreements involving the transfer of personal data to third countries or international organisations which were concluded by Member States prior to…
Art. 95 GDPRRelationship with Directive 2002/58/EC This Regulation shall not impose additional obligations on natural or legal persons in relation to processing in connection with the provision of publicly…
Art. 94 GDPRRepeal of Directive 95/46/EC Directive 95/46/EC is repealed with effect from 25 May 2018. References to the repealed Directive shall be construed as references to this Regulation….
Art. 93 GDPR Committee procedure The Commission shall be assisted by a committee. That committee shall be a committee within the meaning of Regulation (EU) No 182/2011. Where reference…
Art. 92 GDPR Exercise of the delegation The power to adopt delegated acts is conferred on the Commission subject to the conditions laid down in this Article. The delegation…
Art. 91 GDPRExisting data protection rules of churches and religious associations Where in a Member State, churches and religious associations or communities apply, at the time of entry into…
Art. 90 GDPR Obligations of secrecy Member States may adopt specific rules to set out the powers of the supervisory authorities laid down in points (e) and (f) of…
Art. 89 GDPR Safeguards and derogations relating to processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes Processing for archiving purposes in…
Art. 88 GDPRProcessing in the context of employment Member States may, by law or by collective agreements, provide for more specific rules to ensure the protection of the rights…
Art. 87 GDPR Processing of the national identification number Member States may further determine the specific conditions for the processing of a national identification number or any other identifier…