Please select user.
There are no topics yet.
What law should I apply if I send emails worldwide.
I am hoping you can help me regarding PECR and GDPR – for marketing purposes if legitimate interest is being used as the basis for marketing (to other businesses) is consent required? (preference for marketing / able to opt out is provided with every email).
DPO need for a start up. Do we need an external DPO for our business and a DPIA? We are setting up as a private COVID testing center
In seguito alla lettura dell’articolo: https://advisera.com/eugdpracademy/it/knowledgebase/il-gdpr-dellue-controllori-a-confronto-con-processori-quali-sono-le-differenze/ ho una domanda:
Il titolare aziendale che analizza e riceve i dati da solo e non si affida a nessuna organizzazione esterna, può fare sia il Controllore che il Processore?
Nel caso in cui i dati, tipo e-mail vengono letti dai dipendenti, deve nominare un processore e il controllore?
I have attended few of your webinars over GDPR. I have a question for you hope you will help me. GDPR says consent is not required is a contract is signed. If a Bank says Account Opening form, filled by customer is a legal contract with Bank, so they dont need customer consent to control and process data. Is it correct? As per my understanding consent is different from AoF. Can you please guide me with GDPR references that still Bank need consent.
One question for you - Is Microsoft Office 365 and Dynamics 365 GDPR compliant?
per fare in modo che due ragioni sociali possano entrambe utilizzare i contatti raccolti in un form, basta specificarlo nelle preferenze della privacy del form di contatto?
I have bought the EU GDPR Website toolkit and would need some help to go through it.
And to make things easier, could you, please, let me know which of the three options I should choose, based on my situation?
I live and work in the UK but with my website I aim to offer my services to the entire world.
Similarly, should I place this link in all the emails I send to my leads and clients?
5) Under section 2 (Processing of Personal Data during Your Use of Our Website), could you please explain the following terms in simple words?
- access control
- segregation of duties
- internal audit
Also, is encryption to be listed here if I only have a SSL certificate? (I do not know whether there are other ways to do encryption.
7) I have Wordpress. Can you confirm that it is GDPR compliant? And, if so, is there a way to know which cookies WordPress sets without plugins installed?
They all are listed under "WordPress Users Cookie" and "WordPress Commenters Cookie" at
Thanks in advance for your help.
I have two questions:
The effect of such a decision is that personal data can flow from the EU (and Norway, Liechtenstein and Iceland) to that third country without any further safeguard being necessary. In others words, transfers to the country in question will be assimilated to intra-EU transmissions of data.The European Commission has so far recognised Andorra, Argentina, Canada (commercial organisations), Faroe Islands, Guernsey, Israel, Isle of Man, Japan, Jersey, New Zealand, Switzerland and Uruguay as providing adequate protection.
I would have a question related to data transfers to third countries under the BCR umbrella.
Are the BCR’s approved under Directive ’95 considered as a valid mechanism for transfers to 3rd countries?
According to WP29 it is stated that while in accordance with article 46-5 of the GDPR, authorisations by a Member State or supervisory authority made on the basis of Article 26(2) of Directive 95/46/EC will remain valid until amended, replaced or repealed, if necessary, by that supervisory authority, groups with approved BCRs should, in preparing to the GDPR, bring their BCRs in line with GDPR requirements.
However, how can a controller verify that BCR approved before 2018 has been brought in line with GDPR? Art.47 does not specify procedure for updates to BCR’s as far as I can tell..
I am currently dealing with a supplier who refuses to proceed with SCC claiming that there BCR approved by the European Commission under Directive’95 are legitimate safeguard for the transfer.
Any advice or further considerations would be much appreciated.