Blog

Information has always been the lifeblood of civilization, yet not all information holds the same weight. Historically, society didn’t pay much attention to data flow organization, separation, reservation, masking or encryption of information as it is today. Usually it was somehow natural, rarely regulated and, sometimes, even, chaotic, when compared to nowadays. First of all, […]

The answer to this question depends on the establishment of the company and its activity.  Obligation to designate a representative arises when the company is not established in the EU but it is subject to the GDPR. It is such situations when companies: However, the GDPR states the exemption when a representative is not needed: […]

Welcome to the first episode of Privacity Chronicles podcast, where we dive into the ever-evolving world of data privacy with Natalija Bitiukova, a Data Protection Officer (DPO) at IKEA Retail — a worldwide retail corporation. We shall find out insights on building a global privacy program, discuss the role of a DPO, privacy communication, and some of the challenges global […]

At a time when a huge number of companies from the EU use various software solutions and services of both large technological giants and small startups registered in the USA for carrying out processing activities, and the same tech giants from the USA process large volumes of personal data in the EU countries , the […]

In today’s data-driven world, where the protection of personal information is paramount, the role of the Data Protection Officer (“DPO“) has become increasingly important. With the introduction of strong data protection laws (such as GDPR or CCPA) and growing awareness among individuals of their privacy rights, companies are looking for skilled professionals to ensure compliance […]

What is GDPR? The General Data Protection Regulation (or “GDPR“) is a comprehensive data protection and privacy law which was adopted in the European Union (“EU“) in May 2018. Its primary purpose is to strengthen and standardise data protection laws across EU member states and to give individuals more control over their personal data. Why […]

The General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and the ePrivacy Directive compliance refer to the adherence to the requirements and principles outlined in these acts. The GDPR, CCPA, and ePrivacy Directive compliance requirements may vary based on factors such as the location of the company and the type of data […]

Privacy communication is essential for protecting personal information and maintaining privacy in various contexts, such as online interactions, healthcare settings, and financial transactions. It`s a critical aspect of protecting personal information and maintaining privacy in a variety of contexts. In today’s digital age, where sensitive personal information is increasingly collected, stored, and shared online, it’s […]

As data protection officers and privacy advisers, it’s a usual task for us to monitor the GDPR compliance of specific applications / websites and so on.  Herewith, how does one define if some website is or is not in GDPR compliance? Well, the task also becomes more complex, if we will take into account that […]

In 2018, when GDPR triggered the massive paradigm shift of the importance of privacy compliance, most stakeholders at the market started with the so-called paper-based privacy compliance approach.  It was like “we will develop many policies and implement them”. Well, GDPR compliance is not just about having policies in place, it means that GDPR principles […]