Carrying out a Data Protection Impact Assessment (DPIA) is a process that helps Data Controllers and Data Processors identify, mitigate and minimize privacy risks associated with the high-risk processing of personal data. Here are the steps to carry out a DPIA:...
The Personal Data Protection Act (PDPA) of Thailand governs the collection, use, disclosure, and transfer of personal data in the country. The PDPA includes specific requirements and restrictions regarding the transfer of personal data outside of Thailand. Under the...
Introduction GDPR introduced and changed the UK and European privacy rules exponentially. The inclusion of Article 25, ‘Privacy by Design’ and ‘Privacy by Default’, formed the basis of embedding global data privacy compliance management into everyday operations and...
A personal data breach is a security breach “leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data,” (GDPR, Article 4.12). All data breaches whether reportable or not require the completion of...
A comprehensive data map can prove an invaluable tool in helping you manage your data privacy, but what exactly is GDPR data mapping and why do you need to do it? As we have passed the third anniversary of GDPR, most businesses have a fairly good grip on what GDPR...