What Are Data Processing Addendums (DPAs)? Data Processing Addendums (DPAs) are instructional contracts between the Controller and Processor outlining how to process and secure the Controller’s data. DPAs are critical to ensuring third-party compliance and...
The proposed U.S. Federal Privacy Law ADPPA was introduced in the U.S. House of Representatives on June 3rd 2022. This represents the first time federal data privacy legislation in the United States has progressed to a full chamber vote. Significant...
Organisations that are in the process of appointing a DPO (data protection officer) need to tread very carefully in selecting the right candidate for the job. In 2019, a well-established German company was among the first to be fined locally for violating data...
Today’s organizations describe their data retention policy as a key element in their data privacy strategy. Industry sectors, whether healthcare, financial services, insurance, government, retail, telecommunications, or education, are valuable information assets that...
The Legitimate Interest Impact Assessment is used to determine if an organisation can process data using the legitimate interest lawful basis. This article explains what lawful bases are under GDPR, and how to complete a legitimate interest assessment (LIA). 6 lawful...