Course: Understanding the GDPR

We should now focus on two important aspects relating to the issue of consent and the position of minors from the perspective of the GDPR. According to Article 6(1)(a) of …

The two year grace period that the GDPR gave to data controllers and processors to comply expired on 25 May 2018. Today, all data controlling and processing activities that are …

Congratulations for finishing the course! In this course we covered a variety of topics, from basic GDPR concepts, to processing principles, rights of data subject, obligations for controllers and processors, …

Under the previous rules on data protection (Directive 95/46/EC), national supervisory authorities had a number of investigatory powers. They had, for example, the power to access controllers’ data, to issue …

As individuals or natural persons, you should know that most of the activities that you daily perform, all the forms that you are asked to fill in and most of …

One of the most discussed topics and the novelties introduced by the GDPR are the administrative fines that supervisory authorities may impose in the event of infringements of the provisions …

If controllers and processors fail to comply with the GDPR there can be negative consequences. Liability and sanctions are an important part of the GDPR. In accordance with the provisions …

As a general rule, transfers of personal data to countries outside the European Economic Area may take place if these countries are deemed to ensure an adequate level of data …

Binding corporate rules (BCRs) are internal rules adopted by multinational groups of companies. They define the group’s global policy with regard to the international transfers of personal data to companies …

To ensure the consistent application of the GDPR throughout the EU an important role will be played by the European Data Protection Board (the Board). Even though the denomination looks …

National supervisory authorities and the European Data Protection Board monitor and supervise GDPR compliance. To facilitate this, the GDPR provides several arrangements to streamline legal compliance and provide guidance. This …

EU legislators have established enforcement mechanisms to ensure data protection and legal compliance. These enforcement mechanisms include a number of measures and instruments: The establishment of national supervisory authorities (and …

National supervisory authorities play an important role in protecting data subjects’ rights with regard to the processing of their personal data. To ensure the protection of data subject’s rights, national …

In today’s global and online world it is likely that controllers and processors that are not established in the EU process personal data of data subjects who are in the …

A data protection officer (DPO) is an officer who monitors the application of and compliance with the GDPR within an organisation. The designation of a DPO is an important measure …