Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
Personal Data Transfer Kit points 6.2 and 6.3
The company process company data, and distributes software to Italian retailers. Do you need to complete the forms 6.2 and 6.3? -
Registration to a local Data Protection Authority
"Where Article 3(2) applies, the controller or the processor shall designate in writing a representative in the Union". I would like to know if it is necessary to have a document in place between the Extra European Company and the European one and also if this has to be communicated to someone, or register it somewhere. -
Utilization of 11.A.15.2 and 11.A.15.1 documents
How do we utilize the 11.A.15,2 "Supplier Data Processing Agreement" & 11.A.15.1 "Standard Contractual Clauses for Transfer of Personal Data to Controllers" for our customer (travel services) and their 3rd party Data Transfers with their suppliers (Travel Agents and outsourced fulfillment companies such as food Services…etc) ? -
Is EU GDPR applicable to Middle East companies
Hi, I am from Bahrain (Middle East). Our organization which is in automobile service sector handles sales and rentals of vehicles with Europe citizens occasionally. Now my question is: "Do we need to be GDPR compliant?” -
Data transfer policies to non-EU country
I need some help with my GDPR documentation. The kit has policies for data transfer to non-eu country. I need the policy from the data processor as I am data processor and not a data controller. -
Addressing roles
While filling out these documents I notice it asks for job titles of the people that would perform certain duties. In some cases, is it acceptable at all to generalize this role by saying “A member of the IT Department” or is it best to only have one person with the ability to fulfill these roles? -
Non-EU based controller
If the controller is non-EU based, but the processing is partially in the EU performed by EU processors, would you have any advise what should all be paid attention to. My ideas were: -
Mexican personal data law
I have a question, I am in Mexico we are in a university and we receive students and teachers from Europe we comply with the Mexican personal data law, however, to comply with GDPR we are updating but my question is if we have to generate the general privacy policy because in the Mexican personal data law they only request the general policy of security of the information? -
Email addresses and data breaches
Yesterday a member of my team sent out an email to all active employees, the content of the email was not sensitive but the email addresses were included in an outlook group that was added to the TO: field in the message resulting in everyone receiving the message also seeing everyone else’s private email address. Email addresses were the only data item concerned. -
Data Processing Agreement
Company A has an obligation under law such and such to collect personal data from individuals for KYC purposes. Can company A outsource to company B to do the KYC and what parameters have to be looked in according to EU GDPR?