Privacy

The last few weeks have engulfed us all – not only privacy professionals like ourselves – into one of the biggest corporate scandals of the new century. You can tell it is serious when after three long weeks, everyone is still talking about it. In this age of short attention spans, three weeks is an eternity. What does Facebook-Cambridge Analytica have to do with Enron? Even though at a first glance the similarities are not apparent, I believe that Facebook-Cambridge Analytica and Enron have a few things in common. For the ones that are old enough to remember, the Enron scandal […]

This is the last installment on the virtues and requirements of GDPR. In this series you learned a few things, like whether or not you need to comply, what to do if you actually need to comply and what to take into account when you are prioritizing your activities towards GDPR compliance. Now you should feel comfortable knowing that at least you understand what this new data compliance regulation is about and, based on your business, what the key areas are that you need to take care of. On May 25 you will certainly be in a better place than […]

In the last few weeks, we have been talking about what GDPR is, who needs to be compliant with it and what things to keep in mind if you have to comply. Now we are going to discuss what is the best way to go about prioritizing GDPR requirements for your organization. It’s all about the risk First off, let me say that GDPR is not a step-by-step prescription on what to do with regards to the management and protection of personal data. If it were that way, we would all have been compliant long ago! Just tick the boxes on […]

Last week we discussed what GDPR is in very broad terms. We also discussed what are the general parameters used to determine whether an organization needs to comply with GDPR or not. Just to refresh our memories, these are the criteria used to make such determination: If you have any physical presence in the EU (even if it is a small sales and marketing office). If you don’t have a physical presence but you offer products or services to EU residents. If you don’t offer products or services but you monitor EU residents online behaviour. You need to comply… now […]

The requirements around this new regulation and who it will apply to The General Data Protection Regulation or GDPR is the new data protection legislation enacted by the European Union that will come into effect on May 25, 2018. This is a very important regulation, not only for European residents but for everyone around the world. The main reason is because it is the first privacy and data protection regulation that ensures that individuals rights and freedoms are the top priority. It also unifies all the different regulations under one rule. The EU data protection directive from 1995 is replaced […]

As I take some time to read the news on a Sunday afternoon, I start realizing that news of GDPR compliance is gaining traction. I even cleared all my cookies to ensure that it was not just showing on my different feeds because of what I’ve read before. No, GDPR is showing up more and more. I’m glad that it is beginning to get the attention it needs. What worries me is that, at this point in time, it leaves very little time left for organizations to get their house in order in time for May 25 (you can check […]