GDPR and Minors
We should now focus on two important aspects relating to the issue of consent and the position of minors from the perspective of the GDPR. Data Consent According to Article …
Course: Understanding the GDPR
Concluding remarks
Congratulations for finishing the course! In this course we covered a variety of topics, from basic GDPR concepts, to processing principles, rights of data subject, obligations for controllers and processors, …
The GDPR for data controllers and processors
The two year grace period that the GDPR gave to data controllers and processors to comply expired on 25 May 2018. Today, all data controlling and processing activities that are …
The GDPR for data subjects
As individuals or natural persons, you should know that most of the activities that you daily perform, all the forms that you are asked to fill in and most of …
Practical implications for data controllers and processors
Under the previous rules on data protection (Directive 95/46/EC), national supervisory authorities had a number of investigatory powers. They had, for example, the power to access controllers’ data, to issue …
Administrative fines
One of the most discussed topics and the novelties introduced by the GDPR are the administrative fines that supervisory authorities may impose in the event of infringements of the provisions …
Introducing GDPR’s liabilities and sanctions
If controllers and processors fail to comply with the GDPR there can be negative consequences. Liability and sanctions are an important part of the GDPR. In accordance with the provisions …
Cross-border data transfers
As a general rule, transfers of personal data to countries outside the European Economic Area may take place if these countries are deemed to ensure an adequate level of data …
Binding corporate rules
Binding corporate rules (BCRs) are internal rules adopted by multinational groups of companies. They define the group’s global policy with regard to the international transfers of personal data to companies …
The European Data Protection Board and the consistency mechanism
To ensure the consistent application of the GDPR throughout the EU an important role will be played by the European Data Protection Board (the Board). Even though the denomination looks …
Codes of conduct and certification mechanisms
National supervisory authorities and the European Data Protection Board monitor and supervise GDPR compliance. To facilitate this, the GDPR provides several arrangements to streamline legal compliance and provide guidance. This …
National supervisory authorities
National supervisory authorities play an important role in protecting data subjects’ rights with regard to the processing of their personal data. To ensure the protection of data subject’s rights, national …
The significance of GDPR enforcement and compliance mechanisms
EU legislators have established enforcement mechanisms to ensure data protection and legal compliance. These enforcement mechanisms include a number of measures and instruments: The establishment of national supervisory authorities (and …
Appointing representatives
In today’s global and online world it is likely that controllers and processors that are not established in the EU process personal data of data subjects who are in the …
Data protection officers
A data protection officer (DPO) is an officer who monitors the application of and compliance with the GDPR within an organisation. The designation of a DPO is an important measure …
