Data protection requirements vary based on the nature of the data hence organizations must have a comprehensive and accurate data map of what data they collect, store, and process. Here is a quick list of attributes that companies should collect as part of their data discovery process. A data mapping process is typically long and…
Read more
As the world focuses more stringently on data privacy and security and with the advent of GDPR and other similar regulations, data governance has become one of the most important concerns for many businesses. This crucial concern has not only guided businesses to implement new operational and technical measures but has also inspired a sea…
Read more
Applause • EDPB adopts COVID-19 guidance on health data processing and Geo-location According to recent reports, the European Data Protection Board has released guidelines on health data processing for research purposes and using Geo-location and other tracking mechanisms to combat COVID-19.The guidelines address the legal basis for processing, cross-border data transfers, safeguards for data subject…
Read more
Associating data with a business purpose and not a commercial purpose can permit greater data sharing, and avoid the application of the CCPA altogether. What is the difference between a business purpose and a commercial purpose under the CCPA and why is it important? In short, the difference is one of what realm of things…
Read more
Author: Ethan Heilig For the last two decades, the Healthcare Insurance Portability and Accountability Act (HIPPA) has been the policy that regulated healthcare data in the U.S by making it illegal to share medical information with people or organizations that the patient did not preapprove. However, the scope of data protected by HIPPA is limited.…
Read more
Data Subjects Access Requests (DSARs) have been on the rise since the European Commission gave the nod to the General Data Protection Regulation (GDPR). There are many things to consider when your company receives a DSAR, including verifying the requestor’s identity, reviewing the information requested, and redacting any information related to other people. However, one…
Read more
Magnacrest, a Buckinghamshire-based housing developer, was fined for failure to comply with data subject access requests. This incident serves as a fresh reminder for businesses about the public’s right to review all the personal data that gets processed. While the Magnacrest investigation predated the General Data Protection Regulation and resulted in a small fine, the Information Commissioner’s…
Read more
Welcome to our weekly privacy newsletter to read the latest privacy-related news from across the globe. We classify our weekly privacy newsletter into three parts namely Applause, Breaches and Current News (ABC’s) of Privacy news. For any feedback on our weekly newsletter, please feel free to send your comments to social@onedpo.com. Applause Washington Lawmakers Plan to Launch a…
Read more
Author: Ethan Heilig Collecting, using, and deleting personal data has recently been the subject of increased political and social scrutiny. Data collection has been at the centre of everything, from congressional hearings to Netflix documentaries. One result of this increased scrutiny is that the E.U. enacted the General Data Protection Regulation (GDPR), which took effect…
Read more
Google Acquires Fitbit Alphabet, Google’s parent company announced on Friday that it is acquiring San-Francisco based smartwatch maker Fitbit for $2.1 billion. Fitbit, the pioneer in wearable technology, has also issued a statement that Google was paying $7.35 per share in cash. Fitbit offers a variety of smartwatches that can send messages, make calls as…
Read more
