Get a 20% discount on the first year of the Company Training Academy annual plan.
Limited-time offer – ends April 24, 2025
Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Supervisory authority for data protection
We are an organisation, which provides consultancy for ISMS and other information security related products in Indian sub-continent. During one of our implementation for an IT Organisation in Sri Lanka and India , we got a query on GDPR. The organisation has appointed a Data Protection Officer. Now we are not sure who will be the Supervisory Authority in India and Sri Lanka for Data Protection. Can you please let me know from where we can get this information. -
GDPR EU Representation
We are effectively a subprocessor handling our customers’ HR assessment data. Is it necessary for us to have a representative located in the EU? -
Non-EU based company blocking EU users by IP while still offering services in EU
This question is about understanding GDPR in relation with non-EU established companies who are thinking about their options for protecting themselves against the fines and they think GDPR is a very aggressive/exaggerated/costly law. -
GDPR responsibilities for small web design business
I would be interested in consultation about GDPR and our liability in relation with websites we provide to our clients. Main questions is what are our responsibilities, what steps we need to do when delivering website and if we are liable for GDPR compliance of clients’ website and their privacy policy statement on the website we created. Mainly we use WordPress CMS for business websites and WooCommerce for e commerce websites. -
Legal data transfer
I own financial services business and will shortly retire. My son will set up a separate, new business going forward rather than acquire the existing business. How to I legally transfer the data to his company. Can I inert a business transfer clause into my data protection policy each client signs. -
Keeping personal data
I just wanted to ask under GDPR keeping personal data for a length of time is that decided by us as organisation? -
GDPR - the right for erasure
Some of our private customers, those who install our free app, do not register with their names and personal details, but only with cell phone number. -
(B)ring (Y)our (O)wn (D)evice and GDPR
I am facing an issue with a client of mine (I am a GDPR consultant) regarding the BYOD. They allow the use of private devices to connect to the company's network as well as send/receive emails. I considered a BYOD policy, but its not that useful because we cannot prohibit employees from using their own devices freely. -
Availability of the policies and procedures of the ISMS
My question is about availability of the policies and procedures of the ISMS. So let's say they are available for all users, on internal site. Does that document need to contain the signatures of all the involved people in revising, approving it? I'm asking also from GDPR point of view. -
What other regions are planning to apply GDPR?
Is there another regions planning to apply similar of GDPR on their own countries? Such as US, Canada, and others.