Privacy Governance: Vision and Mission When talking about the Privacy Governance concept, the importance of having a consistent Vision and Mission statements, I must admit that, sometimes I have exactly the same feelings described in the image published below (once again, thank you for the sticker IAPP). Let’s imagine the situation: I’ve been assigned the […]
04. Representative of Controllers and Processors
According to the Article 27, GDPR, all the Controllers and Processors that are not established in the EU but offer goods or services to data subjects established in the Union, and/or monitor their behaviour while the data subjects are in one of the EU countries, are obliged to designate in writing a Representative.
Metrics and Privacy Programs Now, it is time to use metrics for your privacy programs. It has been a long journey since we started the description of the role of a Privacy Manager and his/her tasks. Do you remember this post? If you have followed our posts, you now have a privacy program in place […]
Security Incidents and Personal Data Breaches Personal Data Breaches and Security Incidents: yes, they happen. This time we talk about those moments for which you think you are prepared and trained. In contrast, my professional experience suggests that, generally speaking, entities are never prepared sufficiently for a security incident. Quick References and Terms Primarily, […]