Loading

Category: Data Protection

GDPR Data Breach Notification WP29 Guidelines

GDPR data breach notification obligation requires the adoption of appropriate technical and organisational measures in order to ensure the safeguarding of personal data during processing. Since the assessment of the risk degree is not always unequivocal, the Article 29 Data Protection Working Party (WP29) has recently adopted GDPR data breach Guidelines. When unauthorised or unlawful processing

Felicia Yap on iDiaries and our online memory delusions

In Felicia Yap’s speculative world of ‘Yesterday’ , people’s short-term memories are finite – so everyone records their daily experiences on electronic diaries. The Guardian’s Rising Star for Fiction 2017 chats to Aphaia Blog about our online memory delusions. The EU law, including General Data Protection Regulation ( GDPR ) , grants individuals the ‘Right to be Forgotten’ ,

GDPR after Brexit

Our blog editor Vasiliki Antoniadou explores the exchange of position papers between the UK and the European Commission regarding the data protection and GDPR after Brexit . As the time for the withdrawal of the United Kingdom from the European Union approaches, the necessary and time consuming negotiation processes in the legislative field commence. Considering that the

GDPR to do list this autumn

GDPR starts to apply less than a year from now – which seems like a reason enough to panic for many data-driven organisations who have so far not addressed the transition to GDPR. But instead of panicking, it may be better to have a look at our autumn GDPR to do list. 1. Map your

Early Data Protection Officer appointment

Although companies are not obliged to appoint a Data Protection Officer before May 2018, we are often asked to already provide Data Protection Officer services now – to help with GDPR implementation. So we started offering ‘ early Data Protection Officer appointment ‘. Early Data Protection Officer appointment means that your appointed Data Protection Officer

Big Data Analytics Financial Services Singapore World Summit

Aphaia is proud to be media partner for Big Data Analytics & Effective CEM Strategy in Financial Services World Summit 2017 to take place 26-27 October 2017 in Singapore. Big Data Analytics Financial Services Singapore World Summit 2017 draws together highly-regarded expert speakers from across the ecosystem of financial services industry and big data analytics

UK Data Protection Bill and GDPR

We are often asked by clients and prospects what happens to UK data protection laws after Brexit? Our regular answer ‘not much’ has proven to be correct: the proposed UK Data Protection Bill and GDPR are meant to be aligned with each other. Indeed, anything else would put UK businesses at a disadvantageous position in

GDPR employment data processing explained by WP29

In the run-up to the implementation of the GDPR in 2018, Article 29 Working Party published a detailed Opinion on data processing at work. The text sheds light on key GDPR employment data processing issues. Technological tools of profiling and monitoring employees’ behaviour are plentiful and enable an increasingly intrusive way of monitoring. Some examples

‘GDPR practitioner’ ? I prefer ‘privacy professional’ instead

This article is not about discrediting any GDPR practitioner courses, certifications, or people who are part of them. But emerging privacy profession and data protection professionals need to strive for credibility, starting with clear language.

Why appointing Data Protection Officer is not the first step in GDPR compliance

Appointing Data Protection Officer might not be the first step for your company to take when it comes to GDPR compliance. Yes – you are likely to need a Data Protection Officer. But it is naive to expect a Data Protection Officer will be able to ensure GDPR compliance from day one.