Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Data privacy question
I have participated your webinar on Data privacy and I have one question. Your statement was that combinig the roles of CISO and DPO within the same person, represents conflict of interest.
Could you please search on the Internet for this topic: "The DPO and conflicts of interest: What (management) functions are compatible with the DPO? -
GDPR in Sweden
1. How is GDPR implementation in Sweden different from Germany? We do not all differences. Our focus is the field of customer journey.
2. Which client data are publicly available in Sweden but not in Germany?
3. Which data can be tracked, e.g. client behavior, websurfing habits etc.?
4. Are there differences in cookie policy? -
Actors considered data subjects in media files?
We process media files like series, movies etc for streaming service providers. In these movies you have a person (actor) and in the credits you can see the person's actual name so you can connect the picture to the actual person. Does this also make all films and series that we handle in our production fall under GDPR? Although this information is available on various streaming platforms and online etc.?
-
Joint Controllers
Could you help me understand who is responsible for a data breach if there are more than one controller?
Example Scenario:
- Company A and B have a joint controller or data sharing agreement (controller to controller). User to provide similar customer services, CRM, email, billing etc.
- Company A collects customer information and shares it with Company B.
- Company B subsequently suffers a data breach exposing the shared data.
Who is responsible for this breach Company A or B?
If required who reports the breach to the customers/commissioner?