EU GDPR - Expert Advice Community



Create New Topic As guest or Sign in

HTML tags are not allowed

Assign topic to the user

  • Sub-Processors

    I need your advice regarding the below:
    Shall sub-processors used by data processor share their sub-processors and third party list with the data processor

  • GDPR - holding data

    I am writing to ask about a mobile app that I downloaded and without reading the privacy policy I accepted it. When I decided to delete my account I was told the company has a right to hold my data for 4 years after I decide to delete my account.

    I wanted to know if this in inline with GDPR laws in regards to right to be forgotten. If I can get some guidance, I can email the app developers and explain that I would like them to delete my data.

  • GDPR Processor (Software Sturtup)

    we are a software startup in israel, we are willing to enter into the EU but we heard we are data processors, so we do not really understand what we need, the information is a bit confused

  • DPIA

    Dears, Appreciate your support to provide me with your advice regarding the following 1. As a processor , should I perform DPIA (is it required) 2. If the controller is not in compliance with the GDPR and didn't share any direction with the data processor (in other words the controller didn't ask the processor to be in compliance with the GDPR). In this case will data processor be liable if any security breach occurs. 3. is it required for the traffic containing PII between a company and service provider to be encrypted.
  • DPIA For Cloud Services

    When and how to carry out a DPIA (data protection impact assessment) with respect to cloud services for my organisation.

  • Software for creating the routes for the school buses

    We would like to create a software for the automated creation of routes for the school buses. We would use Google Maps api to create the individual routes to pass on addresses of the students (without names) to these api. What should we pay attention to?
  • Question about GDPR Article 27

    We have bought several of your products and love everyone of them.  We had a question about GDPR article 27.  We are working with one of our customers on their GDPR annual audit and one of the questions that is asked for Article 27 is: "Is your organisation established outside of the European Union"?

    This customer is US Based, but has a corporation established in both the UK and Ireland.  They do all of their EU business from either the UK or the Ireland companies and have "Data Champions" in place at each company in the UK and Ireland.  Since they have a corporate entity in the EU, are they allowed to answer the "Is your organisation established outside of the European Union" question "No"?

  • Privacy Policy

    Dear Sir/Madam

    I need your advice regarding the below

    1. As a data processor , is it required to create a privacy policy
    2. what is data processor obligation regarding data subject right


    Hi All,
    I'm new to GDPR and reading blogs and articles from which is really helpful. However, I have a query with respect to the Right to be forgotten.

    I would like to know if a customer/individual can request a call center to delete or remove his chat logs which he had with a support agent? If so, does the call center has to take this request as an RTBF??

  • Are we required to store data in the EU that is collected in the EU?

    I have one key question, and cannot find the answer at your website. We are a small business in the U.S. Are we required to store data in the EU that is collected in the EU? We use Hostgator for our server

Page 20 of 97 pages