background preloader

GDPR new text

Facebook Twitter

EU Regulation 2016/679 (the General Data Protection Regulation, or "GDPR"), Text published 4 May 2016, enforceable after a grace period, 28 May 2018.
Possible fines up to the greater of €20 million or 4% of annual global turnover.


full title : “Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC. Privacy Experts in Need of Career Path. Navigating the new EU Data Protection rules.

Compliance

GDPR Infographic. Art29 WP. UK ICO. FRANCE. Privacy Blog. White & Case Law. Hogan Lovell. Allen & Overy. Fieldfisher. Exchangewire. Data protection. In the news. GDPR in Sweden: Does your boss know? Why the GDPR is Good News for Business. Not many people will remember this but in 2008, Richard Thomas, the former UK Information Commissioner caused a fairly dramatic stir in the privacy world – at least among policy makers and fellow regulators – by unashamedly proclaiming that European data protection law was outdated and ineffective to address the technological and privacy challenges of the 21st century.

Why the GDPR is Good News for Business

At first, this was regarded by some as an embarrassing admission that could not possibly be right. Impact of the EU’s General Data Protection Regulation on the Insurance and the Reinsurance Industry. Guidelines for Data Maps and Data Inventories. Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra: JD Supra provides users with access to its legal industry publishing services (the "Service") through its website (the "Website") as well as through other sources.

Guidelines for Data Maps and Data Inventories

Our policies with regard to data collection and use of personal information of users of the Service, regardless of the manner in which users access the Service, and visitors to the Website are set forth in this statement ("Policy"). By using the Service, you signify your acceptance of this Policy. Information Collection and Use by JD Supra JD Supra collects users' names, companies, titles, e-mail address and industry. Rethinking Data Protection and Privacy in Europe: Shaping the European Digital Future. Key Speakers The main findings published by the European Commission’s Eurobarometer (June 2015) show that a significant percentage of EU citizens still express uncertainty regarding the control and protection of their personal data.

Rethinking Data Protection and Privacy in Europe: Shaping the European Digital Future

Two-thirds of the respondents (67%) affirmed concerns about having no control over the information they provide online, while only 15% felt they had complete control. With the estimated value of European citizens’ personal information having the potential to grow to approximately €1 trillion annually by 2020, data requires an efficient legal framework to further regulate its collection, analysis and transfer.

How GDPR and the Network and Information Systems Security Directive will complicate cloud computing. GDPR: The Data Protection Principles (but not as you know them Jim!) Having recently attended the Information Commissioner’s Office Data Protection Practitioners Conference in Manchester, I should start this blog post by echoing the words of our outgoing Commissioner, Christopher Graham, that the Regulation text is not the final version until later this year when it has been reviewed and fully translated for all 28 member states.

GDPR: The Data Protection Principles (but not as you know them Jim!)

But as the Regulation is unlikely to change in material terms, let’s crack on! Whenever you see blogs and articles about the new EU General Data Protection Regulation, they are often focusing on what’s new and “exciting”, be that in a good or bad context (see our summary here). But this blog post will look at some of the things that are remaining familiar, albeit in an edited ‘reshuffled’ form. GDPR – VCISO. It shall apply from 25 May 2018.

GDPR – VCISO

GDPR Half Day Workshop Now available in London “Discover how your Supply Chain can COST Your business under your radar…” Introduction to GDPRKey requirementsLikely impact on CustomersLikely impact on EmployeesLikely impact on your BusinessLikely impact your supply chain on has on your Business (A real force magnifier in an under the radar bad way)Impact on Direct MarketingNew Data Request obligationsNew Data Protection Officer obligationsNew Breach Notification obligationsNew Cloud Service Provider requirementsImpact AssessmentsRisk AssessmentsDeveloping a Real World Action Plan Book Now T: 02071752476 E: info@vciso.co. A miscellany. Yesterday morning I attended a meeting in Brussels held under the auspices of the Community of Practice for better self- and co-regulation.

A miscellany

It was an interesting and very useful event. Impact asessments. EU General Data Protection Regulation (GDPR) - MacRoberts LLP. Overview We are in the midst of the most significant reform of data protection laws in over 15 years.

EU General Data Protection Regulation (GDPR) - MacRoberts LLP

Our social, retail and business habits have created a world in which data is key to business activity and the law is now racing to keep up. Regulation 2016/679 - the GDPR by any other name - Panopticon Panopticon. May 4th, 2016 If you thought the GDPR had a disappointing ring of informality to it, you will be delighted to hear that the final translated text of the GDPR has now been published in the Official Journal.

Regulation 2016/679 - the GDPR by any other name - Panopticon Panopticon

As a result, it has a number: Regulation 2016/679. Welcome. 32016R0679. The newsletter for data protection professionals. Current Issue (September 2016) Volume: 13 Issue: 9 News The Advocate General (‘AG’) of the Court of Justice of the European Union (‘CJEU’), Yves Bot, issued, on 8 September 2016, his opinion (‘the Opinion’) in Camera di Commercio, Industria, Artigianato e Agricultura di Lecce v.

the newsletter for data protection professionals

Salvatore Manni (C-398/15), in relation to a preliminary question referred by the Italian Court of Cassation (‘the Court’) to the CJEU, regarding the correct interpretation and coordination of the provisions of Company Law Directive (68/151/EEC) (Articles 2(1)(d)(j) and 3) with the Data Protection Directive (95/46/EC) and the Charter of Fundamental Rights of the European Union. The Court queried whether personal data recorded in the Company Register can, after a period of time and upon request, be deleted, made anonymous, blocked or made available only to certain third parties who have a legitimate interest in / read more. New EU General Data Protection Regulation Affects Multinational Companies. The General Data Protection Regulation is now, effectively, law.

New EU General Data Protection Regulation Affects Multinational Companies

Businesses have 730 days from official publication (expected to be in June) to comply. It would be a mistake to think that this is just a European issue: it will affect every business throughout the world that holds or uses European personal data. Joint Statement on the final adoption of the new EU rules for personal data protection. European Commission First Vice-President Frans Timmermans, Vice-President in charge of the Digital Single Market Andrus Ansip, and Commissioner for Justice, Consumers and Gender Equality, Věra Jourová made the following statement: "The European Commission welcomes the final adoption of the new EU data protection rules by the European Parliament, following the adoption by the Council last Friday.

Today's vote marks a significant achievement, and the culmination of over four years of hard work with the European Parliament, the Council, business, civil society and other stakeholders. EU General Data Protection Regulation P2. FT Cyber Security Summit Europe organised by FT Live. Cyber attacks on businesses are on the increase throughout Europe and their security is constantly being breached. Even the best counter measures have their vulnerabilities. • Just how serious is the threat? How is corporate security being compromised, and what is the actual and potential scale of financial loss and reputational damage? • How do you best prevent, detect and respond to cybercrime? • How do the board and senior management team develop an effective cyber security strategy? • Working with other organisations: how important is it that companies liaise with governments, software vendors, consultants, researchers and others to bolster their defences?

• EU developments: how will the Network and Information Security (NIS) Directive improve security? Yves Bigot, Managing Director, TV5Monde Arne Schönbohm, President, Federal Office for Information Security, Germany Heli Tiirmaa-Klaar, Head of Cyber Policy Co-ordination, European External Action Service. Is pleased to announce the release of their GDPR Compliance Toolkit. 201617 August Providing organisations with the tools to understand, assess, and develop a roadmap to demonstrable GDPR compliance Toronto - Nymity, a leading global research company specialising in accountability, risk, and compliance solutions for the privacy office, is pleased to announce the release of its new GDPR Compliance Toolkit that equips privacy officers with the resources necessary to understand, assess, and develop a plan for complying with the EU General Data Protection Regulation (GDPR).

IoF calls for soft opt-in model for marketing emails and texts. The Institute of Fundraising has said that charities should not be prohibited from sending marketing emails and texts to their existing supporters without specific consent. In its submission to the EU Commission’s first public consultation on its proposed review of the eprivacy directive, the piece of legislation that informs the Privacy and Electronic Communications Regulations, the IoF said the PECR’s explicit prohibition on charities using the "soft opt-in" rule when sending marketing emails and texts should be removed.

The soft opt-in rule means that businesses can email or text their own customers even if they have not specifically consented to receiving such communications. It cannot currently be used in charity fundraising and other non-commercial promotions, including political campaigning, which the IoF believes puts charities at a disadvantage. The DMA also said the UK should be able to maintain its existing approach to telemarketing, which is to use an opt-out consent model. LAST WEEK IN PRIVACY & DATA PROTECTION – Medium. 12th Weekly Newsletter -> 23–30 September Hamburg DPA issues an administrative order for Facebook to delete WhatsApp data.

Guide to the General Data Protection Regulation. GDPR - The Need for a Revised Information Governance Strategy. GDPR & cyber security – New European legal regime for data breach, privacy and data security @ Cyber News Group. Top 10 EU Privacy Regulation issues – #3 Did you run a privacy impact assessment? Top 10 EU Privacy Regulation issues – #3 Did you run a privacy impact assessment?

Giulio Coraggio on 28 April, 2016 - 12:50 am in data protection, privacy. Privacy Regulation - will fines be really massive? Top 10 EU Privacy Regulation issues – #2 Will fines be really massive? VKI v Amazon – yet another episode in the applicable law saga - Privacy, Security and Information Law Fieldfisher. GDPR passes final approvals - Brodies LLP Legal Resource Area.

Disruptive GDPR. Data is a charity's most-valuable commodity - start treating it as such. How GDPR changes the rules for research. Factsheet_dp_reform_citizens_rights_2016_en. The new Data Protection Regulation has been adopted. Breach Notification: Europe's Countdown Begins. Start preparing immediately for the EU's new General Data Protection Regulation, even though it doesn't go into force for two more years. "We're advising our clients to start right now," says cybersecurity expert Brian Honan, who heads Dublin-based BH Consulting. "While two years sounds may sound [like] a long time, there's a lot of work to do. " That includes coming to grips with changes to information-gathering and consent practices, Europe's first-ever mandatory data breach notifications for all organizations, as well as a new requirement for many organizations that handle people's personal information to appoint a data protection officer.

After years of related negotiations, the European Parliament and European Council on April 8 enacted the GDPR, which will go into force on May 25, 2018. Data protection: problems and solutions. GDPR: Are our privacy rights limited when internet services are FREE. EU GDPR will apply beginning May 25, 2018: Norton Rose Fulbright publishes GDPR Checklist, announces events and master classes - Data Protection Report. Diariolaley - Documento. Security Training.