GDPR sammanfattat

GDPR är en EU-lagstiftning med obligatoriska regler för hur organisationers och företags användning av personuppgifter ska ske på ett integritetsvänligt sätt. Personuppgifter betyder all information som direkt eller indirekt kan identifiera en levande person. Namn, telefonnummer och adress är skolboksexempel på personuppgifter.

gdpr nyckelbegrepp

Use of facial recognition is a privacy violation according to new decision by Swedish privacy regulator

Use of facial recognition in school subject to GDPR fine (Sweden’s first sanction)

A public school in Sweden filmed the students to register class attendance. The school is fined with EUR 20 000. The use...
Cookie consent

Cookie consent must be an active choice (5 requirements from CJEU)

A new ruling in the Planet49 case by the EU Court of Justice (CJEU) states that internet users must actively give their...

utvalda artiklar

uppmärksammade artiklar

A public school in Sweden filmed the students to register class attendance. The school is fined with EUR 20 000. The use of facial recognition violated the GDPR since the use was too intrusive and did not have a valid reason. Reading time: 4...
A new ruling in the Planet49 case by the EU Court of Justice (CJEU) states that internet users must actively give their consent to the storage of cookies and similar technologies. This puts an end to the use of opt-out and soft opt-in mechanisms for cookies under...
A retention policy is a guide to personnel on how to manage the lifecycle of information from collecting to destroying data. Therefore, the policy should cover all data retained in an organization's custody or control. Reading time: 1 minute. Introduction Organizations are bound by various obligations with regard to the data they...
Learn what you need to know about GDPR fines, as it is one of the most talked about aspects of the GDPR. Below is a short explanation of what triggers the GDPR fines and who awards them. This article will also discuss what you can do to mitigate the...
Security of Personal Data can be achieved when the data is protected by the appropriate controls in relation to the sensitivity of the data. The GDPR does not prescribe exactly what level of security that is required but provides guidelines.   Reading time: 2 minutes. What is security of personal data Organizations using...

Frågor?

Tveka inte att kontakta oss om du har några frågor om GDPR.