GDPR

A guide to GDPR privacy by design requirements

A guide to GDPR privacy by design requirements

The General Data Protection Regulation (GDPR) is one of the most strict and heavily enforced privacy laws in the world, with the goal of protecting the Personally Identifiable Information (PII) of residents …

Avatar photo

Donata Stroink-Skillrud

GDPR rules for responding to data subject requests

GDPR rules for responding to data subject requests

The General Data Protection Regulation (“GDPR”) provides rights to residents in the European Union (“EU”) that allows them to control their personal data. To exercise their rights, the GDPR allows EU residents …

Alice Porch

A guide to GDPR Privacy Policy disclosure requirements

A guide to GDPR Privacy Policy disclosure requirements

The General Data Protection Regulation (“GDPR”) gives residents in the European Union (“EU”) control over their personal data. Under the GDPR, a controller must make certain disclosures to EU residents about its …

Alice Porch

GDPR: how to create a data protection impact assessment

GDPR: How to create a data protection impact assessment

The General Data Protection Regulation (“GDPR”) directs how an organization should handle the personal data of residents in the European Union (“EU”). Under the GDPR, an organization must conduct a Data Protection …

Alice Porch

GDPR: how to process data under the consent legal basis

GDPR: how to process data under the consent legal basis

The General Data Protection Regulation (GDPR) is a privacy law that protects the personal data of residents of the European Union. GDPR achieves this goal by providing privacy rights to individuals, requiring …

Avatar photo

Donata Stroink-Skillrud

What rights does GDPR provide to consumers?

What rights does GDPR provide to consumers?

The General Data Protection Regulation (GDPR) is a comprehensive privacy law designed to protect the Personally Identifiable Information (PII) of residents of the European Union (also referred to as data subjects). GDPR …

Avatar photo

Donata Stroink-Skillrud

GDPR data processor and data controller definitions

GDPR Data Processor and Data Controller definitions

The General Data Protection Regulation (GDPR)  is a privacy law that protects the Personally Identifiable Information (PII) of residents of the European Union. While the law has a broad application, applying to …

Avatar photo

Donata Stroink-Skillrud

Who does GDPR apply to?

Who does GDPR apply to?

The General Data Protection Regulation (GDPR) is one of the most comprehensive and heavily enforced privacy laws in the world. GDPR was enacted to protect the privacy of European Union residents (data …

Avatar photo

Donata Stroink-Skillrud

GDPR fines and penalties to date

GDPR fines and penalties to date

Since the implementation of the General Data Protection Regulation (“GDPR”) in April 2016, over 2,000 fines have been issued to businesses and organizations by supervisory bodies throughout the European Union. It is …

Ryne Sulier

What needs to be included in a Privacy Policy

What needs to be included in a Privacy Policy?

As consumers have become more interested in the privacy of their Personally Identifiable Information (PII) online, more countries and states have passed their own privacy laws. These privacy laws protect the PII …

Avatar photo

Donata Stroink-Skillrud