Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Personal Data Protection Policy template
I just bought the template Personal Data Protection Policy. In your web page states that this is optimized for small and medium-sized companies, but I saw a lot of references of job titles that are confusing me. There are references for: Data Protection Officer, IT security officer, Head of legal department, IT manager, Marketing manager, Human resources manager, Procurement manager,…. I think this is the structure of a large company, not a small one. -
Access to psychometric tests
I am a psychologist and I wonder what happens when a client requests access to their file which includes completed psychometric tests? Can the client be given a copy of the completed test? various ethical codes prohibit client access to the tests themselves (although they can have a copy of the produced report), with the aim of maintaining test reliability and also respecting the test's copyrights. I was wondering if GDPR covers this. -
Supervisory authority for data protection
We are an organisation, which provides consultancy for ISMS and other information security related products in Indian sub-continent. During one of our implementation for an IT Organisation in Sri Lanka and India , we got a query on GDPR. The organisation has appointed a Data Protection Officer. Now we are not sure who will be the Supervisory Authority in India and Sri Lanka for Data Protection. Can you please let me know from where we can get this information. -
GDPR EU Representation
We are effectively a subprocessor handling our customers’ HR assessment data. Is it necessary for us to have a representative located in the EU? -
Non-EU based company blocking EU users by IP while still offering services in EU
This question is about understanding GDPR in relation with non-EU established companies who are thinking about their options for protecting themselves against the fines and they think GDPR is a very aggressive/exaggerated/costly law. -
GDPR responsibilities for small web design business
I would be interested in consultation about GDPR and our liability in relation with websites we provide to our clients. Main questions is what are our responsibilities, what steps we need to do when delivering website and if we are liable for GDPR compliance of clients’ website and their privacy policy statement on the website we created. Mainly we use WordPress CMS for business websites and WooCommerce for e commerce websites. -
Legal data transfer
I own financial services business and will shortly retire. My son will set up a separate, new business going forward rather than acquire the existing business. How to I legally transfer the data to his company. Can I inert a business transfer clause into my data protection policy each client signs. -
Keeping personal data
I just wanted to ask under GDPR keeping personal data for a length of time is that decided by us as organisation? -
GDPR - the right for erasure
Some of our private customers, those who install our free app, do not register with their names and personal details, but only with cell phone number. -
(B)ring (Y)our (O)wn (D)evice and GDPR
I am facing an issue with a client of mine (I am a GDPR consultant) regarding the BYOD. They allow the use of private devices to connect to the company's network as well as send/receive emails. I considered a BYOD policy, but its not that useful because we cannot prohibit employees from using their own devices freely.