GDPR Articles on Compliance Junction

Essential Steps for GDPR Compliance

Europe is a couple of months away from enforcing the General Data Protection Regulation. With this limited time, several studies still show that most companies are not prepared for the new requirements. The fact remains […]

GDPR Impact on Email Marketing

The EU’s General Data Protection Regulation (GDPR) unifies different email laws from across member states. The new law is set to bring greater consistency to how businesses use and store data. GDPR modifies various critical […]

GDPR: How it Changes EU Data Protection Law

The primary objective of the GDPR is to safeguard the European Union citizens from data breaches. This is particularly important since the world is increasingly becoming data-driven and the conditions are largely different from the […]

Differences Between Controller and Processor Under GDPR Rules

One of the changes that will be introduced with General Data Protection Regulation (GDPR) in 2018 includes the delineation of specific obligations on data controllers and processors. Contrary to the current law, the new data […]

GDPR Impact on Recruitment Industry

It is has been almost two decades since the introduction of the Data Protection Acts (DPAs). As technology develops, business operations and human activities keep changing. The laws governing these activities must keep pace with […]

How does GDPR Apply to Schools?

The two-year grace period for organizations to align their systems and processes to General Data Protection Regulation (GDPR) requirements is almost coming to an end with less than eight months remaining. This has left many […]

GDPR Requirements for Emailing Existing Customers

The European Union’s approach to online privacy sets new requirements for communications between email marketing companies and their subscribers. The new General Data Protection Regulation (GDPR) legislation, to be introduced on May 25 2018, brings […]

GDPR Compliance for Off-site Workers

When the General Data Protection Regulation (GDPR) legislation is enacted by the European Union on May 25 2018, firms that have established a safe information management process that incorporates offsite workers will be in a position […]

GDPR for US Companies

The implications of GDPR for US companies who collect, maintain or process personal data of EU citizens will be significant – and compliance is compulsory. The European Union´s General Data Protection Regulation (GDPR) takes effect in May 2018 […]

GDPR Compliance Checklist

The objective of this article is to provide a GDPR compliance checklist to allow companies to get started on GDPR compliance. It is not a comprehensive guide, but instead is a quick-start guide. The General Data Protection Regulation has been a reality […]

GDPR for Small Business

GDPR for small business has resulted in some confusion. Many small businesses assume that the General Data Protection Regulation (GDPR) does not apply to them. If you are a small business owner that believes this to be the case, you could be in for a shock […]

GDPR Compliance for the Insurance Industry

You may have heard about the implementation of the General Data Protection Regulation (GDPR), which is due to take place on 25 May 2018; let’s take a look at GDPR and the Insurance Industry in more detail. This type of in depth consideration is important […]

GDPR Best Practices

The General Data Protection Act (GDPR) becomes law on 25 May 2018, so it’s important that all businesses and organisations are aware of GDPR best practices. Failure to adopt these GDPR best practices could result in non-compliance. This in turn […]

Software Upgrades for GDPR Compliance

When the General Data Protection Regulation (GDPR) becomes law, on 25 May 2018, you will need to know about software upgrades for GDPR compliance. It could be that your business or organisation may need to upgrade software that is already in place, or […]

GDPR Subject Access Request Rules Explained

The procedures for requesting a Subject Access Request (SAR) are set to change very little with the introduction of the General Data Protection Regulation (GDPR), in May 2018 […]

What are the GDPR Customer Consent Rules?

When the General Data Protection Regulation (GDPR) comes into force on 25 May 2018, rules for obtaining consent are going to be more stringent than they are at present […]

GDPR Rules for Recording Calls

Call recording is a process that is widely used by businesses and organizations across the globe. It is a valuable tool, and one that will continue to be used for years to come […]

What is Legitimate Interest in GDPR?

You may have heard a lot about consent, in relation to the General Data Protection Regulation (GDPR), which becomes a reality in May 2018 […]

What is the GDPR right to be Forgotten?

When the General Data Protection Regulation (GDPR) comes into force, in May 2018, it applies to any individual who is living in the EU at the time […]

Who is Responsible for GDPR Training?

Any business which employs more than 250 people, and processes personal data, is required to have a Data Protection Officer (DPO) under GDPR rules […]

What is High and Very High Risk for GDPR?

The introduction of the General Data Processing Regulation (GDPR), on 25 May 2018, is intended to regulate the way different member states of the EU deal with data protection matters […]

What are the Countries Subject to GDPR Privacy Law?

If you think that your company will not be affected by the General Data Protection Regulation (GDPR), as it is not based within the EU, you may be in for a surprise […]

Does GDPR Apply to Employees?

The simple answer to the question, does GDPR apply to employees, is that yes it does. Businesses cannot only think about complying with the General Data Protection Regulation (GDPR) in respect […]

What are the GDPR Password Requirements?

The new General Data Protection Regulation (GDPR), which comes into force in 2018, does not outlaw the use of a simple username and static password system for accessing personal data, but it does state […]

What are the Differences between GDPR and the EU Data Privacy Directive?

The Data Privacy Directive was originally adopted in 1995, as a means of regulating the way personal data was dealt with in EU member states […]

Does GDPR Require New Consent from Existing Clients?

When the General Data Protection Regulation (GDPR) activates, on 25 May 2018, you may still be able to use the consent you already hold, under previous data protection regulations […]

What are the GDPR Penalties?

If you are concerned that your business or organisation may not be fully prepared for the enforcement date of the General Data Protection Regulation (GDPR), you really should be taking action […]

Summary of GDPR Notification Requirements

GDPR’s data breach notification requirements will be significantly different from the existing ones. The regulation tends to move away from the current general notifications […]

GDPR Summary

The text of the General Data Protection Regulation was agreed as far back as 2015, and the regulation becomes law on 25 May 2018, from when the details in this GDPR summary apply […]

GDPR Frequently Asked Questions

The General Data Protection Regulation (GDPR) is due to become law in May 2018, and already there are many GDPR frequently asked questions. The introduction of the GDPR is intended to provide a level of uniformity to the way personal data is […]

GDPR Data Protection

Prior to the enforcement of GDPR data protection, there are currently data protection regulations and recommendations in place, throughout the various member states of the EU […]

UK General Data Protection Regulation

In this article we are going to look at the UK General Data Protection Regulation, or rather, how the General Data Protection Regulation (GDPR), will affect how data protection is dealt with in the UK […]

GDPR Guidelines on Binding Corporate Rules

The Article 29 working party has produced two documents which detail General Data Protection Regulation (GDPR) requirements, in relation to Binding Corporate Rules (BCRs). […]

What Exemptions are there from GDPR?

The introduction of General Data Protection Regulation (GDPR), on 25 May 2018, is intended to bring consistency to the way in which data protection is dealt with across the EU. That being said […]

What are the GDPR Restrictions on Employee Data?

You may think that you know everything there is to know about General Data Protection Regulation (GDPR), but the rules dealing with employee data are different to those which deal with the data […]

What are the Rights of Individuals under GDPR?

There are two main reasons for the introduction of General Data Protection Regulation (GDPR); to create uniformity in the way data protection is dealt with across the EU and to provide new […]

What are the Implications for GDPR in the UK after Brexit?

You may have heard about the General Data Protection Regulation (GDPR) which comes into force on 25 May 2018. However, do you understand what its implications are pre and post Brexit? […]

Cross Border Data Transfer Rules under GDPR

General Data Protection Regulation, which becomes law on 25 May 2018, is similar to the current Data Protection Directive in the way it refers to cross border transfer of data, but it is more explicit […]

GDPR Enhanced Citizen Rights Explained

The new General Data Protection Regulation (GDPR) comes into force on 25 May 2018. The regulation brings with it new rights for people living within the EU. The rights relate to personal data […]

Does Every Company Need to Appoint a GDPR Data Protection Officer?

The simple answer to this question is that not all companies need to appoint a Data Protection Officer (DPO) under the General Data Protection Regulation (GDPR). It is expected that larger companies […]

GDPR Compliance Requirements for Website Owners

You may not think that the new General Data Protection Regulation (GDPR) applies to your website because it is an EU regulation and your business or organisation is based outside of the EU. […]

GDPR Compliance for Software Applications

As a software developer, you may have heard about the General Data Protection Regulation (GDPR), which comes into effect on 25 May 2018. It is important that you know how the introduction […]

What is the definition of Personal Data under GDPR?

The General Data Protection Regulation (GDPR), which comes into force of 25 May 2018, is intended to give EU citizens more control over the personal data about them that is held by businesses […]

GDPR Article 35 Compliance

Article 35 of the General Data Protection Regulation (GDPR) stipulates that a Data Protection Impact Assessment (DPIA) should be carried out if the processing of data is high risk. Although there […]

Nominating a GDPR Lead Supervisory Authority

Following the introduction of the General Data Protection Regulation (GDPR), in May 2018, each business or organization will report to a Lead Supervising Authority (LSA), in that this […]

GDPR Notification Requirements

Currently there is no general responsibility for companies who process data of EU citizens to report a data breach to data subjects, although some companies do send notifications as a matter […]

EU GDPR Official Resources

GDPR Official Text

Official EU Data Protection Portal

Personal data protection: processing and free movement of data (General Data Protection Regulation)

Working Party 29 Guidance

WP29 Home Page

Guidelines on “Right to Portability” (pdf)

Guidelines on Data Protection Officers (pdf)

Guidelines for identifying a controller or processor’s lead supervisory authority (pdf)

European Commission Factsheets

Better rules for European businesses

Better Data Protection rights for European citizens

Next steps before 25 May

General Data Protection Regulation: ensuring its enforcement

Successful application of the Data Protection Reform: a concerted effort