Data Protection Officer Responsibilities
Context: Article 39 of the GDPR describes the tasks that the data protection officer (DPO) should undertake. These fall into the following broad areas:
Consent Reporting
Context: Article 7 of the GDPR states that: …the controller shall be able to demonstrate that the data subject has consented to processing of his or her personal data.
GDPR: what is required?
Sometimes you can take a quick look at something and you fill in the gaps with what you know it should say – especially with things that are particularly familiar. The familiar can change and it could be so easy to miss it – Did you spot the deliberate error in the picture? Perhaps you …
Difference between Law and Ethics
There has been a visible shift, especially in larger companies, to be seen as “ethical” or to have good “ethics”. The question is what is the difference between law and ethics? Ethics A dictionary definition of Ethics is “the discipline dealing with what is good and bad and with moral duty and obligation” (Merriam-Webster). For …
Difference between the Law and Ethics
There has been a visible shift, especially in larger companies, to be seen as “ethical” or to have good “ethics”. The question is what is the difference between law and ethics?
Compliance… It’s a cultural thing
Too often, leaders attempt to change the way people act without changing the way they think (i.e., their beliefs). As a result, they get compliance, but not commitment; involvement, but not investment; and progress, but not lasting performance. Thats not a compliance culture.
Controller Processor Contract
Context: The GDPR introduces a requirement to have specific elements included in data processing contracts. When processing personal information there should be a controller processor contract in place – especially where there is a separate data controller and processor.
Data Minimisation
Context: The GDPR sets forth the need to implement technical measures to protect the personal information of individuals. In many cases the regulation does not specify which technical measures. However, in the case of data minimisation, this is identified as a principle; a principle that requires support by such measures.
Attention to detail needed
It’s good to get the basics done, when preparing for anything. However, if you don’t pay attention to detail your mistakes can be highly visible.
Are you observing law or moving to seize power? It’s time to make your mind up!
How many of us are going to actually seize power… really? Many would like to see a major change in government and legislative oversight. The reality is that our involvement in a political coup is highly unlikely. However, there’s always the danger of breaking laws in other ways. Not observing law could be due to lack …
Are you observing law or moving to seize power? It’s time to make your mind up! Read More »