Per the German DSK (the Conference of Independent German Federal and State Data Protection Supervisory Authorities), emails need to be encrypted in order to meet the minimum requirements of Article 32 of the General Data Protection Regulation (GDPR).
The COVID-19 pandemic has upended global business, but European regulators say it won’t stop them from promoting privacy and data protection, according to the International Association of Privacy Professionals.
“What’s clear about the regulators’ enforcement strategies is that they each intend to keep pushing data protection forward, knowing its general importance is only growing as
Data protection by design and by default (DPbDD): The complexity of this GDPR obligation is apparent even from acronym itself.
It was my pleasure to try to simplify this concept and break down the steps that European Union data controllers need to take in this piece for OneTrust DataGuidance insights.
The European Data Protection Board (EDPB) has issued a strong statement on the suspension of certain aspects of the General Data Protection Regulation in Hungary.
Per the EDPB: Restrictions adopted in the context of a state of emergency suspending or postponing the application of data subject rights … without any clear limitation in time, [is
Key takeaways from my recent presentation titled “Service Providers v. Data Processors: What Should Your Agreement Address?” with Lexology and Exterra.
The European Data Protection Supervisor addressed the coronavirus crisis in a post titled “Carrying the torch in times of darkness.”
“The outbreak of Covid-19 is affecting our lives at an unprecedented pace. It is testing the resilience of our societies as we respond to this global crisis and try to contain its consequences, both in
Data Protection Authorities for France and the Netherlands have weighed in on the use of temperature taking in the fight against the spread of COVID-19.
“We hear that all kinds of organizations use different means to check people quickly for fever. Not only with a thermometer, but also with thermal cameras”
“That’s not allowed. This is a serious offense under [GDPR] . If this happens, we will enforce.”
“We don’t want to wake up in a few months in a society with a kind of Chinese situation, in which the employer is constantly watching you and can even see your care data and have all kinds of consequences.”
Continue Reading Temperature-Taking Under GDPR: Guidance from Spain, the Netherlands
Coronavirus and Data Protection: The UK Information Commissioner’s Office has issued an opinion on the Google-Apple joint initiative for contact tracing apps.
The European Law Blog posts on how COVID-19 related data collection activities in third countries should affect EU data transfer adequacy decisions.
“The data collection and processing measures taken in third countries to combat the coronavirus are relevant to an evaluation of the continued validity of existing adequacy decisions and the potential conclusion of new
Healthcare data company CENTOGENE announced it has joined forces with blockchain startup Ubirch to create a solution to secure results of COVID-19 mass testing that takes into consideration General Data Protection Regulation (GDPR) compliance.
Based on the premise that absent a vaccine widespread testing is inevitable to permit the return of social interaction, the solution