Category: GDPR

What Attributes to Capture in GDPR / CCPA Data Mapping? Ten Essential Attributes

Data protection requirements vary based on the nature of the data hence organizations must have a comprehensive and accurate data map of what data they collect, store, and process. Here is a quick list of attributes that companies should collect as part of their data discovery process. A data mapping process is typically long and…
Read more

Understanding Data Protection Landscape – Key Roles In Data Privacy

As the world focuses more stringently on data privacy and security and with the advent of GDPR and other similar regulations, data governance has become one of the most important concerns for many businesses. This crucial concern has not only guided businesses to implement new operational and technical measures but has also inspired a sea…
Read more

ABC’s of Privacy This Week-April 29,2020

Applause • EDPB adopts COVID-19 guidance on health data processing and Geo-location According to recent reports, the European Data Protection Board has released guidelines on health data processing for research purposes and using Geo-location and other tracking mechanisms to combat COVID-19.The guidelines address the legal basis for processing, cross-border data transfers, safeguards for data subject…
Read more

Data Protection Checklist for Employers – Enable Working From Home

COVID-19 has impacted business operations across the globe forcing many companies to work remotely. Working remotely has huge data privacy and security implications. We have created a basic checklist that will help employers to protect their data as employees work from home. This global pandemic could remain a threat for a prolonged period of time.…
Read more

Data Protection Checklist When Working From Home

These are extraordinary times as we deal with COVID-19. Teams across the globe, including oneDPO, have shifted to work-from-home as a precautionary measure. Working remotely has huge data privacy and security implications. We must take data protection even more seriously as we might work from home for a prolonged period. Here is a basic checklist…
Read more

GDPR Implementation

GDPR Art. 30 – How to Practically Implement Records of Processing Activities?

In connection with the EU General Data Protection Regulation (GDPR), many companies are wondering how to practically implement records of processing activities. The record of processing activities allows companies to make an inventory of the data processing and to have an overview of how personal data is handled. It also helps companies to be compliant…
Read more

Data Mapping | Best Practices to Follow in Data Mapping

What is Data Mapping? Modern enterprises collect a huge volume of data from a variety of sources and use the data through complex interactions across the organization. The organization can’t analyze, transform, share, and derive valuable insights unless they have a common understanding of the data. Data Mapping is the process of establishing relationships between…
Read more

Why Email Shouldn’t be Used to Manage DSARs

Data Subjects Access Requests (DSARs) have been on the rise since the European Commission gave the nod to the General Data Protection Regulation (GDPR). There are many things to consider when your company receives a DSAR, including verifying the requestor’s identity, reviewing the information requested, and redacting any information related to other people.  However, one…
Read more

Steps Involved in a Data Subject Access Request (DSAR)

What is DSAR? With the advent of GDPR, a term DSAR was introduced. A Data Subject Access Request (DSAR) refers to a petition by a customer to an organization regarding personal data. DSARs give individuals the right to discover what kind of data an organization is holding about them, why the organization is holding that data, and…
Read more

How to Establish Privacy Principles Within an Organization

Author: Ethan Heilig Collecting, using, and deleting personal data has recently been the subject of increased political and social scrutiny. Data collection has been at the centre of everything, from congressional hearings to Netflix documentaries. One result of this increased scrutiny is that the E.U. enacted the General Data Protection Regulation (GDPR), which took effect…
Read more