GDPR: Transferring data outside of the European Union

The General Data Protection Regulation (“GDPR”) requires a data controller to implement safeguards to protect the personal data of residents in the European Union (“EU”). When an organization transfers data outside of the EU, it must follow the requirements of the GDPR. In this guide, we will explain: What are … Read more

GDPR creating data flow maps

The General Data Protection Regulation (“GDPR”) allows residents in the European Union (“EU”) to have control over their data. Under the GDPR, a controller must maintain an internal record of all its processing activities. In addition, the controller must make the record available to a supervisory authority upon request. In … Read more

GDPR data breach reporting requirements

The General Data Protection Regulation (“GDPR”) is a broad set of regulations in the European Union (“EU”) that protects the personal data of its residents. Under the GDPR, if an organization has a data breach, it must notify a regulatory authority and the affected individuals. In this guide, we will … Read more

GDPR rules for responding to data subject requests

The General Data Protection Regulation (“GDPR”) provides rights to residents in the European Union (“EU”) that allows them to control their personal data. To exercise their rights, the GDPR allows EU residents to send a request to the data controller. In this guide, we will answer the following: What is … Read more

GDPR rules for responding to data subject requests

The General Data Protection Regulation (“GDPR”) provides rights to residents in the European Union (“EU”) that allows them to control their personal data. To exercise their rights, the GDPR allows EU residents to send a request to the data controller. In this guide, we will answer the following: What is … Read more

A guide to GDPR Privacy Policy disclosure requirements

The General Data Protection Regulation (“GDPR”) gives residents in the European Union (“EU”) control over their personal data. Under the GDPR, a controller must make certain disclosures to EU residents about its data processing activities. In this guide, we will explain: What disclosures are required under the GDPR: General Data … Read more

GDPR: How to create a data protection impact assessment

The General Data Protection Regulation (“GDPR”) directs how an organization should handle the personal data of residents in the European Union (“EU”). Under the GDPR, an organization must conduct a Data Protection Impact Assessment (“DPIA”) if it processes high-risk data. In this guide, we will explain: What is a Data … Read more

The Nevada privacy law definition of sale

In 2017, Nevada passed the Nevada Privacy of Information Collected on the Internet from Consumers Act (“Nevada Privacy Law”). The law requires online operators to post a Privacy Policy. Two years later, lawmakers amended the law to allow consumers to opt-out of the sale of their information. The Nevada Privacy … Read more

Who does Nevada’s privacy law apply to?

Nevada enacted the Nevada Privacy of Information Collected on the Internet from Consumers Act (“Nevada Privacy Law”) in 2017. The law requires an online operator to post a privacy policy to inform consumers of how their data is collected, used, and shared. In 2019, Nevada added a requirement for operators … Read more

Consumer rights under Nevada’s privacy law

In 2017, Nevada passed the Nevada Privacy of Information Collected on the Internet from Consumers Act (“Nevada Privacy Law”) to protect Nevada consumers. The law requires operators to post a Privacy Policy on their website or online service. In 2019, Nevada updated the law to require operators to provide a … Read more