EU GDPR - Expert Advice Community



Create New Topic As guest or Sign in

HTML tags are not allowed

Assign topic to the user

  • Filling out documents in integrated toolkit

    We decided not to implement ISO27001 in the next 6 months, but we want to implement GDPR now. I need the separate toolkit for GDPR if it's possible. Thanks.
  • Recording speakers at events

    I hope you can assist me and that my previous purchases cover asking questions like this. I have a query for you about recording video, taking photographs and other media we record for events / webinars / podcasts etc. The question relates to capturing the presenters and speakers at the events using video / photographs. Do we need to ask for consent under GDPR to process this data? Or do we ask them to sign a release so they are giving us copyright for the recordings / images etc? If we ask them to sign a release from so we own copyright of the material, how will this affect their rights under GDPR? For example if they sign a release for a video and then later claim they want it deleted under GDPR – can they do this as we own copyright? Or is there some other way we should process this data under the GDPR without relying on consent?
  • Posts on discussion forum

    I just want to ask a brief question about GDPR. In our company, we organise a discussion forum. Are we obliged, under GDPR, to delete posts from that forum, if the author requires us to do so? Or is it ok if we just anonymise the post? Thanks a lot
  • Storing data on Google Suite/Drive

    We wondered if you could help us regarding the following. We would like to know:
    1. When collating our list of client emails when sending out a seasonal greeting (our annual Christmas email) we store the list on Google Suite/Drive, and also CETA - our facilities managing database. Is this permitted?

    2. I update an online excel sheet which tracks which clients attend for which jobs. This is also stored on G Suite and CETA. Is this permitted?

  • GDPR - Credit card details

    Can hotels store credit card details of customers?

  • Article 1÷

    My employer collects my salary and sends it over to a third party payroll company to organise, who then sends tax to the government tax office.

    I have just realised this is what was happening, I thought my company were dealing directly with the tax office.

    Should they have informed me that my data was going to this third party company who organise my salary and pay my taxes? Its been happening for three years.

  • Text source about obligation to have IT Security Structure in place on premises

    I work as a freelance within Human Resources for a pharmaceutical SME company in ***, which belongs to an international group. We have strong co-determination rights regarding the works council.
    Members of the international headquarters want to know in which chapter of the GDPR it is written down, that a company, i.e. in ***, who has servers on its premises with various software programmes that process personnel data, must have a IT Security Structure: i.e. who has access to the servers' room, which security measures have been taken in case of fire or other emergency incidents, etc.
    Thanks a lot for a link or some further information

  • Email marketing

    What law should I apply if I send emails worldwide.

  • PECR and GDPR

    I am hoping you can help me regarding PECR and GDPR – for marketing purposes if legitimate interest is being used as the basis for marketing (to other businesses) is consent required? (preference for marketing / able to opt out is provided with every email).

  • Data Protection Legislation

    DPO need for a start up. Do we need an external DPO for our business and a DPIA? We are setting up as a private COVID testing center

Page 12 of 96 pages