Today, Safer Internet Day, represents a good opportunity to remind organizations of the importance of embedding data protection and security into the design of processes, products and services. This consideration is, in fact, embodied in the first principle of five which I have identified as the foundation of Socially Responsible Data Protection and which are ...
On May 31st the Supreme Court of Ireland denied Facebook’s appeal to avoid referral of its recent case concerning the international transfer of personal data to the European Court of Justice. You most likely remember the case brought forth by privacy activist and lawyer Max Schrems which questions whether the methods used by technology companies, and ...
In the Council's effort to deter cyber-attacks constituting an external threat to the EU or Member States, the EU can now impose targeted restrictive measures which include asset freezes on both persons and entities and a ban on people travelling to the EU. Such restricted measures are considered necessary in light of the Common Foreign ...
On 3 October 2018 the Irish Data Protection Commission (DPC) commenced an investigation into the latest Facebook data breach examining the company's compliance with GDPR obligations concerning the implementation of technical and organisational measures to ensure the security and safeguarding of the personal data it processes. The breach was notified on 28 September 2018 and the investigation ...
Happy May 25th to everyone. Today represents the start of a new era for data protection, privacy and digital rights. https://m.youtube.com/watch?v=b-kiF3k8WTQ&feature=youtu.be
Want to know how to handle data breaches under the GDPR? Join me and Tresorit CEO and co-founder Istvan Lam on April 25th 2018 for a webinar where we will help you understand what exactly is considered a data breach under the GDPR, when you have to report an incident and to whom, who is liable for ...
ENISA's "Technical Guidelines for the implementation of minimum security measures for Digital Service Providers" will prove to be extremely useful for businesses. The guidelines spell out minimum security measures and are especially relevant with respect to alignment with the GDPR which only set forth in Article 32 (Security of processing) the obligation of controllers and ...
Top-tier ICT, privacy & data protection lawyer and Founding Partner of ICT Legal Consulting. Professor of Privacy, Cybersecurity, and IT Contract Law at the European Centre on Privacy and Cybersecurity within the Maastricht University Faculty of Law. President of the European Privacy Association. Lead Auditor BS ISO/IEC 27001:2013 (IRCA Certified).
Read more
CONNECT