gdpr obligations rules
play

GDPR Obligations & Rules Introduction to Privacy and the GDPR - PowerPoint PPT Presentation

Nov 18, 2022 •537 likes •626 views

GDPR Obligations & Rules Introduction to Privacy and the GDPR Simone Fischer-Hbner CC-BY-4.0 Advising, Monitoring, Enforcing European Data Protection Board Art. 68 - 73 (replacing the Art. 29 Working Party) advise Supervisory

  1. GDPR – Obligations & Rules Introduction to Privacy and the GDPR Simone Fischer-Hübner CC-BY-4.0

  2. Advising, Monitoring, Enforcing European Data Protection Board – Art. 68 - 73 (replacing the Art. 29 Working Party) advise Supervisory Authorities (Regulators) – Art. 51-59 Government, monitor, Parliament assess, monitor, lodge enforce assess, DPO DPO complaint enforce advise, monitor advise, disclose data, monitor exercise data subject rights duties contract Data Data Data Subject Controller Processor

  3. Clear Rules for Business • One single set of rules – which will make it simpler / cheaper for companies to do business in the EU. • One-stop-shop – businesses will only have to deal with one single (lead) supervisory authority. • European rules on European soil – companies based outside of Europe will have to apply the same rules when offering services in the EU. • Risk-based approach – measures tailored to the respective risks.

  4. Obligations - Controller • Implement appropriate technical & organisational data protection measures (Art. 24, 25) • built into products and services from the earliest stage of development ( Data Protection by Design – Art. 25 (1)) • to ensure that only the data necessary should be processed, short storage period, limited accessibility ( Data Protection by Default – Art. 25 (2)) • Select only processors with sufficient guarantees to implement appropriate technical & organisational measures (Art. 28)

  5. Oligations – Controller (II) • Data breach notification to • the supervisory authority (Art. 33) – without undue delay & within 72 hours if feasible (Art. 33) • the data subject – in case of high risk to their rights and freedom (Art. 34) • Data Protection Impact Assessement (Art. 35) - for high risk data processing • Prior Consultation (Art. 36) – with supervisory authority

  6. Obligations – Processor & Controller • Processing by processor governed by contract or legal act (Art. 28) • Security of Processing (Art. 32) • Appropriate measures, such as pseudonymisation and/or encryption for protecting Confidentiality, Integrity and Availability • Maintain records of processing activities (Art. 30) • Designate a data protection officer - DPO (Art. 38) • Unless data processing is not their core business activity.

  7. Data Transfers to Third Countries (Art. 45): Adequacy: Personal data can only be transferred to third country, where the Commisson has decided an ” adequate level of data protection ”. • Special adequacy decisions: Privacy Shield • Privacy shield replaced Safe Harbor after CJEU 2014 Decision on Schrems vs. Facebook • However: Concerns by EDPS & Art. 29 Working Party Examples of exceptions: • Standard contractual clauses (Art. 46) • Binding corporate rules (BCRs – Art. 47) • Explicit consent (Art. 49)

  8. Administrative Fines (Art 83): Supervisory Authority shall impose administrative fines for infringements of the GDPR, which shall be effective, proportionate and dissuasive. Two tier structure: • Greater of 10 Million € or 2% of global turnover • Greater of 20 Million € or 4% of global turnover (for serious breaches)

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Obligations of a controller A walk through the GDPR Regina Becker ELIXIR-LU ELIXIR AllHands

Obligations of a controller A walk through the GDPR Regina Becker ELIXIR-LU ELIXIR AllHands

Obligations of a controller A walk through the GDPR Regina Becker ELIXIR-LU ELIXIR AllHands TeC Meeting 6. June 2018 First things first steemkr.com The heart of the GDPR The most important principles Lawfulness Fairness Art. 6

485 views • 15 slides
POST MAY 25TH GDPR OBLIGATIONS, GOVERNANCE, AND RESPONSE WEBINAR May 2, 2018 BDO USA, LLP,

POST MAY 25TH GDPR OBLIGATIONS, GOVERNANCE, AND RESPONSE WEBINAR May 2, 2018 BDO USA, LLP,

POST MAY 25TH GDPR OBLIGATIONS, GOVERNANCE, AND RESPONSE WEBINAR May 2, 2018 BDO USA, LLP, a Delaware limited liability partnership, is the U.S. member of BDO International Limited, a UK company limited by guarantee, and forms part of the

589 views • 28 slides
EU GDPR PRACTICAL IMPLEMENTATION GUIDE - OPPORTUNITIES AND THREATS bd@gemserv.com Agenda

EU GDPR PRACTICAL IMPLEMENTATION GUIDE - OPPORTUNITIES AND THREATS bd@gemserv.com Agenda

Reaz Khedarun and Ian Davis EU GDPR PRACTICAL IMPLEMENTATION GUIDE - OPPORTUNITIES AND THREATS bd@gemserv.com Agenda Implications and opportunities of GDPR New obligations and liabilities for suppliers How GDPR compliance can

437 views • 24 slides
GDPR Webinar Guide Overview and key points Part 1 of our series on GDPR and its impact on the

GDPR Webinar Guide Overview and key points Part 1 of our series on GDPR and its impact on the

1 GDPR Webinar Guide Overview and key points Part 1 of our series on GDPR and its impact on the recruitment industry 2 Introduction The rules which underpin the storage of personal data have changed dramatically. The new EU-US Privacy Shield

998 views • 35 slides
GDPR General Data Protection Regulation DR. Rafi us Shan, Chief Cyber Security , KP CERC KPITB

GDPR General Data Protection Regulation DR. Rafi us Shan, Chief Cyber Security , KP CERC KPITB

GDPR General Data Protection Regulation DR. Rafi us Shan, Chief Cyber Security , KP CERC KPITB GDPR TIMELINE Definitions GDPR is a set of EU laws that come into affect on May 25th 2018. GDPR rules are designed to give more control over

587 views • 30 slides
Will new regula,ons change the rules of adver,sing? GDPR and e-privacy regula,on Will the new

Will new regula,ons change the rules of adver,sing? GDPR and e-privacy regula,on Will the new

Will new regula,ons change the rules of adver,sing? GDPR and e-privacy regula,on Will the new regula,ons be a threat or an opportunity? It is probably depending of which side you represent! It is a complex marketing picture today The value

302 views • 19 slides
GDPR How does it apply to me? What is GDPR? It is the LAW! What is GDPR? The General Data

GDPR How does it apply to me? What is GDPR? It is the LAW! What is GDPR? The General Data

GDPR How does it apply to me? What is GDPR? It is the LAW! What is GDPR? The General Data Protection Regulation Came into force on May 25 th Replaces the current 1995 Data Protection Directive and Data Protection Act (1998). What is GDPR?

570 views • 18 slides
The Galaxy use case under the GDPR Regina Becker ELIXIR-LU ELIXIR AllHands Workshop 7. June

The Galaxy use case under the GDPR Regina Becker ELIXIR-LU ELIXIR AllHands Workshop 7. June

The Galaxy use case under the GDPR Regina Becker ELIXIR-LU ELIXIR AllHands Workshop 7. June 2018 The Galaxy service What GDPR rules apply? kirkpatrickprice.com The Galaxy service Acting as a processor under the GDPR Definition

308 views • 19 slides
Military Divorce: Support Obligations and Healthcare Coverage Navigating Unique Rules for

Military Divorce: Support Obligations and Healthcare Coverage Navigating Unique Rules for

Presenting a live 90-minute webinar with interactive Q&A Military Divorce: Support Obligations and Healthcare Coverage Navigating Unique Rules for Alimony, Child Support, Health Insurance Coverage and Enforcement Methods WEDNESDAY, DECEMBER

467 views • 43 slides
Grantee Rules on Obligations and Expenditures Division of Energy Assistance Office of Community

Grantee Rules on Obligations and Expenditures Division of Energy Assistance Office of Community

Grantee Rules on Obligations and Expenditures Division of Energy Assistance Office of Community Services Administration for Children & Families U.S. Department of Health and Human Services Agenda Overview: Knowing the Differences

396 views • 25 slides
SRA Transparency Rules Overv rview Context to the reforms Overview of the rules Approach to

SRA Transparency Rules Overv rview Context to the reforms Overview of the rules Approach to

SRA Transparency Rules Overv rview Context to the reforms Overview of the rules Approach to enforcement Common pitfalls and tips to help compliance Support Available GDPR Privacy Notices, Contact Us forms & Secure websites Survey of

400 views • 36 slides
Data minimization & concentration: Intended and unintended consequences of the GDPR Garrett

Data minimization & concentration: Intended and unintended consequences of the GDPR Garrett

garjoh_canuck Data minimization & concentration: Intended and unintended consequences of the GDPR Garrett Johnson (Boston U) Scott Shriver (U Colorado Boulder) GDPR Impact GDPR General Data Protection Regulation EU EEA Brexit GDPR

833 views • 27 slides
Protection Regulation (GDPR) Presentation Structure What is the GDPR? When and where does

Protection Regulation (GDPR) Presentation Structure What is the GDPR? When and where does

Presentation by Michalis Mantzaris, PhD Introduction to General Data Protection Regulation (GDPR) Presentation Structure What is the GDPR? When and where does it apply? Consisting elements and Guideline provision Key changes and

605 views • 23 slides
Overview What is the GDPR? What are the main changes? Risks? What do you need to do

Overview What is the GDPR? What are the main changes? Risks? What do you need to do

Overview What is the GDPR? What are the main changes? Risks? What do you need to do to be compliant? Data Breaches How does the GDPR affect you? Steps to Compliance Summary What is the GDPR? q The EU's General Data

355 views • 17 slides
PROTECTION REGULATIONS May 2018 GDPR What is GDPR What is different Principles

PROTECTION REGULATIONS May 2018 GDPR What is GDPR What is different Principles

GENERAL DATA PROTECTION REGULATIONS May 2018 GDPR What is GDPR What is different Principles of of GDPR How does it effect school How are school preparing How does it effect individual staff How can

475 views • 12 slides
Welcome Agenda GDPR is in force now and applies to Australian businesses What does GDPR require?

Welcome Agenda GDPR is in force now and applies to Australian businesses What does GDPR require?

Welcome Agenda GDPR is in force now and applies to Australian businesses What does GDPR require? How does an Australian business comply? Action Plan Section 1: GDPR is here Privacy in the digital age Historically, privacy was almost

513 views • 40 slides
Northern Irelands Place in Europe post-Brexit 5 November 2019 www.qub.ac.uk/Brexit

Northern Irelands Place in Europe post-Brexit 5 November 2019 www.qub.ac.uk/Brexit

Northern Irelands Place in Europe post-Brexit 5 November 2019 www.qub.ac.uk/Brexit @QUBPolicy Where are we with Brexit? Professor David Phinnemore @DPhinnemore Where are we with Brexit? 17 October 2019 revised Withdrawal Agreement

446 views • 11 slides
(Straw) Man in the Middle: A Modest Post-Snowden Proposal Brussels, Belgium Jacob Appelbaum

(Straw) Man in the Middle: A Modest Post-Snowden Proposal Brussels, Belgium Jacob Appelbaum

(Straw) Man in the Middle: A Modest Post-Snowden Proposal Brussels, Belgium Jacob Appelbaum [redacted] 10 December 2015 Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 1 / 26 Post-Snowden? What does that mean?

439 views • 33 slides
Solar demand in Europe in times of COVID-19 Aristotelis Chantavas President of SolarPower Europe

Solar demand in Europe in times of COVID-19 Aristotelis Chantavas President of SolarPower Europe

Solar demand in Europe in times of COVID-19 Aristotelis Chantavas President of SolarPower Europe Head of Europe Enel Green Power A new Era of Growth for Solar in the European Union EU market outlook until 2023 (status: Dec. 2019): EU solar

368 views • 7 slides
Data privacy: Introduction Vicen c Torra March, 2019 Hamilton Institute, Maynooth University,

Data privacy: Introduction Vicen c Torra March, 2019 Hamilton Institute, Maynooth University,

Data privacy: Introduction Vicen c Torra March, 2019 Hamilton Institute, Maynooth University, Ireland Outline Outline 1. Motivation 2. Difficulties 3. Terminology 4. Disclosure 5. Transparency 6. Privacy by design 7. Summary 1 / 37

510 views • 38 slides
1 Simultaneous interpretation EN channel 1 FR channel 2 ES channel 3 DE channel 4 2 The Future

1 Simultaneous interpretation EN channel 1 FR channel 2 ES channel 3 DE channel 4 2 The Future

EUROPEAN AFFAIRS COMMITTEE The Future of Health in the European Union Brussels, November 15th, 2018 #AIM20yearsBxl #FutureHealthEU 1 Simultaneous interpretation EN channel 1 FR channel 2 ES channel 3 DE channel 4 2 The Future of Health in

299 views • 9 slides
Topics for essays Giovanni Marin Department of Economics, Society, Politics Universit degli

Topics for essays Giovanni Marin Department of Economics, Society, Politics Universit degli

Topics for essays Giovanni Marin Department of Economics, Society, Politics Universit degli Studi di Urbino Carlo Bo Aim of the essay Put at work what you learnt in the first part of the course on specific case studies Retrieve

750 views • 25 slides
Bachelor Introduction First year students CS, IMM, LI Department of Computer Science VU

Bachelor Introduction First year students CS, IMM, LI Department of Computer Science VU

Bachelor Introduction First year students CS, IMM, LI Department of Computer Science VU University Amsterdam Benjamin Timmermans Study Advisor and Researcher in Human Computing VU University Amsterdam VU Amsterdam Computer Science

1.68k views • 40 slides
Lecture 7: Empiricism and Evidence 1 Today: 1. First papers 2. Empiricism and evidence 1.

Lecture 7: Empiricism and Evidence 1 Today: 1. First papers 2. Empiricism and evidence 1.

HPSC 1001/1901/2101/2901 WHAT IS THIS THING CALLED SCIENCE? Semester 2, 2020 Lecture 7: Empiricism and Evidence 1 Today: 1. First papers 2. Empiricism and evidence 1. First papers Things to do: (i) Write as clearly as you can. Usually, the

987 views • 21 slides

More recommend