Privacy program

What is biometric data? The GDPR states that it is personal data resulting from specific technical processing relating to the physical, physiological, or behavioural characteristics of a natural person, which allow or confirm the unique identification of that natural person, such as facial images or dactyloscopic data. Examples of biometric data include fingerprints, retinal patterns, […]

Accountability is one of the principles of data protection. This principle requires the company to take responsibility for what the company do with personal data and how it complies with the other principles. It follows that this principle establishes the company must demonstrate its compliance, i.e. implement the necessary procedures and develop documents. Developing a […]

Living in a world where a huge volume of information is processed every second, it is crucial to understand the necessity and value of personal data. Spreading awareness helps ensure security, thus protecting the interests of data subjects. In turn, it helps to secure the market position of the data holders: ensuring the privacy of […]

Information has always been the lifeblood of civilization, yet not all information holds the same weight. Historically, society didn’t pay much attention to data flow organization, separation, reservation, masking or encryption of information as it is today. Usually it was somehow natural, rarely regulated and, sometimes, even, chaotic, when compared to nowadays. First of all, […]

The answer to this question depends on the establishment of the company and its activity.  Obligation to designate a representative arises when the company is not established in the EU but it is subject to the GDPR. It is such situations when companies: However, the GDPR states the exemption when a representative is not needed: […]

Welcome to the first episode of Privacity Chronicles podcast, where we dive into the ever-evolving world of data privacy with Natalija Bitiukova, a Data Protection Officer (DPO) at IKEA Retail — a worldwide retail corporation. We shall find out insights on building a global privacy program, discuss the role of a DPO, privacy communication, and some of the challenges global […]

In today’s data-driven world, where the protection of personal information is paramount, the role of the Data Protection Officer (“DPO“) has become increasingly important. With the introduction of strong data protection laws (such as GDPR or CCPA) and growing awareness among individuals of their privacy rights, companies are looking for skilled professionals to ensure compliance […]

What is GDPR? The General Data Protection Regulation (or “GDPR“) is a comprehensive data protection and privacy law which was adopted in the European Union (“EU“) in May 2018. Its primary purpose is to strengthen and standardise data protection laws across EU member states and to give individuals more control over their personal data. Why […]

First step  Starting a GDPR compliance project from scratch is a daunting task. As a project champion, you must do a lot of things, keep them in mind, organise – and do everything simultaneously. And change management is exceedingly high: one day, you map the processes, and the other day your marketing team decides to […]

Who is the data protection officer?  The data protection officer is a person (in-house or an outsourced specialist) helping your organisation remain compliant with the GDPR (and national data protection laws).  This position became mandatory in the EU after some Member States had introduced Directive 95/46/EC (the predecessor of the GDPR) into their national law […]