More
    A public school in Sweden filmed the students to register class attendance. The school is fined with EUR 20 000. The use of facial recognition violated the GDPR since the use was too intrusive and did not have a valid reason.Reading time: 4...
    Data controllers ("sellers”) and data processors ("their suppliers”), often use personal data to deliver products and services. The seller and their suppliers must both ensure that the data is managed safely and securely. Under the GDPR, the persons whose data is used (“data subjects”) have several new options to...
    A personal data breach is a security risk that affects personal data in some way. If a breach occurs, the data controller has to do certain things. Depending on how severe the breach is, the data controller has to act in different ways. This means that a data processor...
    The principle of accountability in the GDPR requires you to take responsibility for how you process personal data. You must also make sure that your company complies with other principles. Furthermore, the principle includes an obligation to demonstrate compliance, meaning that companies must have documented procedures and routines in...
    This article sets out the data processing agreement basics of responsibilities between two parties that share personal data as a by-product of their collaboration, e.g. purchaser-supplier relationship.Reading time: 1,5 minutes. Who is responsible and for what? Data controllers are organisations that collect personal data and decide what happens with it. For this...
    Individuals right to information is about how to collect and use their personal data. This right has led to several information-related obligations that companies need to fulfil. In particular, the main goal of these obligations is to be clear and open about your processing activities.Reading time: 1,5 minutes. Principle of...
    Learn what you need to know about GDPR fines, as it is one of the most talked about aspects of the GDPR. Below is a short explanation of what triggers the GDPR fines and who awards them. This article will also discuss what you can do to mitigate the...