Search results
The General Data Protection Regulation (GDPR) Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data. This text includes the corrigendum published in the OJEU of 23 May 2018. The regulation is an essential step to strengthen individuals' fundamental ...
The GDPR applies to: a company established outside the EU and is offering goods/services (paid or for free) or is monitoring the behaviour of individuals in the EU. If your company is a small and medium-sized enterprise ('SME') that processes personal data as described above you have to comply with the GDPR. However, if processing personal data ...
What information must be given to individuals whose data is collected? List of the type of information organisations must provide citizens with when collecting their data, this includes who is collecting it and why. Information on purposes for which data can be processed, volumes that can be collected, storage and transparency rules.
Jun 4, 2021 · Communication from the Commission to the European Parliament and the Council - Data protection rules as a trust-enabler in the EU and beyond – taking stock. Overview of personal data protection, rules reform, data protection regulation and directive. Impact of the new data protection rules on EU citizens and organisations.
Data must be stored for the shortest time possible.That period should take into account the reasons why your company/organisation needs to process the data, as well as any legal obligations to keep the data for a fixed period of time (for example national labour, tax or anti-fraud laws requiring you to keep personal data about your employees for a defined period, product warranty duration, etc.).
How the EU determines if a non-EU country has an adequate level of data protection. The European Commission has the power to determine, on the basis of article 45 of Regulation (EU) 2016/679 whether a country outside the EU offers an adequate level of data protection. The adoption of an adequacy decision involves: the adoption of the decision ...
Jun 4, 2021 · According to the General Data Protection Regulation (GDPR), contractual clauses ensuring appropriate data protection safeguards can be used as a ground for data transfers from the EU to third countries. This includes model contract clauses – so-called standard contractual clauses (SCCs) – that have been “pre-approved” by the European ...
The GDPR protects personal data regardless of the technology used for processing that data – it’s technology neutral and applies to both automated and manual processing, provided the data is organised in accordance with pre-defined criteria (for example alphabetical order). It also doesn’t matter how the data is stored – in an IT system, through video surveillance, or on paper; in all cases, personal data is subject to the protection requirements set out in the GDPR.
Jun 13, 2019 · As of May 2018, with the entry into application of the General Data Protection Regulation, there is one set of data protection rules for all companies operating in the EU, wherever they are based. Stronger rules on data protection mean. people have more control over their personal data. businesses benefit from a level playing field.
Articles 58, 60, 83 and 84 and Recitals (129), (148), (150) and (151) of the GDPR; EDPB Guidelines on the application and setting of administrative fines for the purposes of Regulation (EU) 2016/679, 3 October 2017
