Guest
We wondered if you could help us regarding the following. We would like to know:
1. When collating our list of client emails when sending out a seasonal greeting (our annual Christmas email) we store the list on Google Suite/Drive, and also CETA - our facilities managing database. Is this permitted?
2. I update an online excel sheet which tracks which clients attend for which jobs. This is also stored on G Suite and CETA. Is this permitted?
Can hotels store credit card details of customers?
My employer collects my salary and sends it over to a third party payroll company to organise, who then sends tax to the government tax office.
I have just realised this is what was happening, I thought my company were dealing directly with the tax office.
Should they have informed me that my data was going to this third party company who organise my salary and pay my taxes? Its been happening for three years.
I work as a freelance within Human Resources for a pharmaceutical SME company in ***, which belongs to an international group. We have strong co-determination rights regarding the works council.
Members of the international headquarters want to know in which chapter of the GDPR it is written down, that a company, i.e. in ***, who has servers on its premises with various software programmes that process personnel data, must have a IT Security Structure: i.e. who has access to the servers' room, which security measures have been taken in case of fire or other emergency incidents, etc.
Thanks a lot for a link or some further information
What law should I apply if I send emails worldwide.
I am hoping you can help me regarding PECR and GDPR – for marketing purposes if legitimate interest is being used as the basis for marketing (to other businesses) is consent required? (preference for marketing / able to opt out is provided with every email).
DPO need for a start up. Do we need an external DPO for our business and a DPIA? We are setting up as a private COVID testing center