Blog: EU Privacy Laws

Page 6

Navigate

GDPR: What are Joint Controllers?

GDPR: What are Joint Controllers?

Under the General Data Protection Regulation (GDPR), two or more data controllers that jointly decide why and how to process personal data are collectively known as "joint controllers." The joint controller relationship arises more commonly than many people realize. For example, simple activities like running a Facebook Page or displaying the...

GDPR Compliance for Startups

GDPR Compliance for Startups

Besides seeking investors, building your customer base, and perfecting your product, your startup needs to consider data protection. Every business operating in the EU must prioritize GDPR compliance. Customers, investors, and business partners need to see that your privacy and security practices align with the law. In this article, we'll be looking...

Updated GDPR Data Processing Agreement Guidance

Updated GDPR Data Processing Agreement Guidance

The European Data Protection Board (EDPB) has published an opinion that has significant implications for data processing agreements (DPAs). It's crucial for all businesses covered by the EU General Data Protection Regulation (GDPR) to note this updated guidance. Any transfer of personal data from a controller to a processor must be...

GDPR Lawful Basis: Legal Obligation

GDPR Lawful Basis: Legal Obligation

If you have customers or users in the European Union, you must have a "lawful basis for processing" under the General Data Protection Regulation (GDPR). Having a valid lawful basis is a core requirement under the GDPR. You must carefully consider your lawful basis every time you collect, use, erase, or...

GDPR Requirements for U.S.-Based Businesses

GDPR Requirements for U.S.-Based Businesses

When the EU General Data Protection Regulation (GDPR) came into force in 2018, it brought many changes for businesses inside and outside of the EU. Developments in 2020 have only increased the compliance challenges for non-EU businesses, particularly those in the United States. This article will look at the main GDPR compliance...

What the EasyJet Data Breach Means for Your Business

What the EasyJet Data Breach Means for Your Business

In May 2020, UK airline EasyJet announced that the personal data of over 9 million of its customers had been breached in a cyberattack. The airline could face massive financial and reputational consequences, including a multi-billion dollar lawsuit and a possible administrative fine under the EU General Data Protection Regulation (GDPR). This...