The Legitimate Interest Impact Assessment is used to determine if an organisation can process data using the legitimate interest lawful basis. This article explains what lawful bases are under GDPR, and how to complete a legitimate interest assessment (LIA). Six...
To protect their customer’s sensitive personal data, organizations need a methodology to ensure they can track all of the data stored within their systems by performing data discovery. This enables the organization to create a detailed picture of data...
Ensuring the privacy of your customers and compliance with local data privacy laws is overwhelming. It takes away valuable time from your business operations while your team tries to figure out how data privacy laws differ in each territory. And the price of getting...
Achieving Thailand PDPA compliance is no small matter for any company or educational establishment, but the way you go about it can be the difference between success and failure. With the right management tools at your disposal, it can be achievable. A PDPA gap...
Article 30 of GDPR requires companies to produce records of processing activities (ROPA). According to the ICO, this requires “a formal, documented, and accurate ROPA based on a data mapping exercise that is reviewed regularly”. ROPA reflects the accountability...