💡 The Spanish Data Protection Authority has discussed Article 22 of the GDPR in a recent article. It explains the concept of "decisions based solely on automated processing". The article emphasises the importance of assessing the degree of human involvement in automated decision-making, considering factors such as competence, preparation and training, independence and diligence, and the means available to exercise their qualifications. It provides examples and criteria for evaluating human involvement effectively: https://lnkd.in/dxBDEe9j
Creditinfo Malta’s Post
More Relevant Posts
-
💡 The Spanish Data Protection Authority has discussed Article 22 of the GDPR in a recent article. It explains the concept of "decisions based solely on automated processing". The article emphasises the importance of assessing the degree of human involvement in automated decision-making, considering factors such as competence, preparation and training, independence and diligence, and the means available to exercise their qualifications. It provides examples and criteria for evaluating human involvement effectively: https://lnkd.in/dxBDEe9j
-
-
GDPR Trainer & Consultant working with small & medium size businesses. Online Course helping groups and organisations understand and improve their GDPR Procedures - Own Your Identity.
For any of my audit clients this is what we do when we are implementing your gdpr programme. If you would like to know more and how you can pay with installments drop me a message on hello@regdpr.com #gdprcompliance #gdprtraining
The GDPR’s accountability principle requires organisations to demonstrate - and, in most cases, document - the ways in which they comply with data protection principles when transacting business. Learn more about the GDPR's accountability obligation for data controllers here: https://lnkd.in/gmjqq-JM
-
The GDPR’s accountability principle requires organisations to demonstrate - and, in most cases, document - the ways in which they comply with data protection principles when transacting business. Learn more about the GDPR's accountability obligation for data controllers here: https://lnkd.in/gmjqq-JM
Accountability obligation | Data Protection Commission
dataprotection.ie
-
Interesting article below
The GDPR’s accountability principle requires organisations to demonstrate - and, in most cases, document - the ways in which they comply with data protection principles when transacting business. Learn more about the GDPR's accountability obligation for data controllers here: https://lnkd.in/gmjqq-JM
Accountability obligation | Data Protection Commission
dataprotection.ie
-
Swiss Data Protection Act Emphasizes Global Regulatory Awareness The Swiss government recently introduced new data protection legislation aimed at providing greater data protection for Swiss citizens. This legislation, set to take effect on September 1st, shares similarities with GDPR and UK GDPR, and imposes new responsibilities on businesses operating in Switzerland. However, it's important for companies to note that there are significant differences between Swiss data protection laws and those of other countries. Therefore, global companies must ensure that their data protection policies comply with the specific regulations in each country they operate in. For more details, you can read the full article by following this link https://lnkd.in/dfpbtXRw
Swiss Data Protection Act Emphasizes Global Regulatory Awareness
insife.com
-
Organisations, are you aware of the two crucial concepts for future project planning - Data Protection By Design and Data Protection By Default? While long recommended as good practice, both of these principles are enshrined in law under the GDPR. Learn more about these important principles here: https://lnkd.in/emXC3Ew
Data protection by Design and by Default | Data Protection Commission
dataprotection.ie
-
Interesting information note (FAQ) "on data transfers under the GDPR to the United States after the adoption of the adequacy decision on 10 July 2023" adopted by EDPB on 18 July (link to document in comments). The EDPB confirms that the safeguards "put in place by the US Government in the area of national security (including the redress mechanism) apply to all data transferred to the US, regardless of the transfer tool used". Therefore, when assessing the effectiveness of the transfer tool chosen in a TIA, the data exporters "should take into account the assessment conducted by the Commission in the Adequacy Decision". The EDPB refers in this regard to recitals (6)-(7) of the Adequacy Decision (in footnote 12) containing the conclusion of the EU Commission that the US ensures an adequate level of protection for personal data transferred under the EU-U.S. Data Privacy Framework. Consequently, this is at least my reading, the laws that have been previously identified by EDPB/CJEU as “problematic” (such as FISA 702 and EO 12,333) should no longer fall into this category, which will simplify US TIAs significantly.
Information note on data transfers under the GDPR to the United States after the adoption of the adequacy decision on 10 July 2023 | European Data Protection Board
edpb.europa.eu
-
European businesses must be prepared to preserve data for investigations by the EU's Directorate-General for Competition, while still complying with GDPR. This requires documented processes and data preservation technology. Download our Whitepaper to learn more! #EU #CompetitionLaw #DataPrivacy #GDPR
Responding to Data Preservation Requirements in Europe
exterro.com
-
Data Cash Solution Founder - Digital Data Protection Officer and Manager - Consultant and Trainer
#experience #dataprotection #businessdevelopment - It is important questions before to start partnership or to start to develop business in Europe #eea. It is linked to your and your partner(s) accountability on data. Following cost and risk you can adapt your strategy! happy to discuss about. #privacybydefault #sustainablebusinessstrategies
If your organisation outsources its processing of personal data to a data processor, you need a GDPR compliant data processing contract. Read our practical guide to Controller-Processor contracts here: https://lnkd.in/eRguRwf
A Practical Guide to Controller-Processor Contracts | Data Protection Commission
dataprotection.ie
-
⏰ Last month, the data protection agenda in Türkiye was dominated by legislative amendments. These amendments on the conditions for processing sensitive personal data, procedures for data transfers abroad, and appeals against decisions of the Turkish Data Protection Authority are the first step towards harmonizing the Turkish Data Protection Act with the GDPR, which has been included in various action plans for some time. 👩💻 A short article I wrote on this topic was published in Privacy Laws & Business International Report, April 2024. I hope it will be informative and helpful to those interested 👇 https://lnkd.in/dUZH79Ye #DataProtection #GDPR #PrivacyLaws #Turkey #LegalUpdates
The new amendments to the Turkish Data Protection Act
privacylaws.com
