SPRING DISCOUNT
Get 30% off on toolkits, course exams, and Conformio yearly plans.
Limited-time offer – ends April 25, 2024
Use promo code:
SPRING30

EU GDPR - Expert Advice Community

Home / EU GDPR

Discussions

Top Contributors

Expert

Rhand Leal

4148
Discussions
Expert

Carlos Pereira da Cruz

1916
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 ISO 9001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS register of requirements Internal Audit Product: ISO 27001/Risk Assessment Table Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Certification ISO 14001
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Parental Consent & Consent withdrawal forms

    1. Can we refrain from completing “Parental Consent & Consent withdrawal forms” as due to the nature of our business we do not handle information for under 18 y/o? (4.3 &4.4)

  • Cross border data transfer

    Our company is outside of the EU but we have contractors - citizens of EU and they provide us with personal data. Is this Cross border data transfer?

  • Disclaimers for the footer of emails

    Do you also provide disclaimers for the footer of emails?

  • GDPR Consent for existing user

    Do we, as a data processor, have to gain consent from our existing users, or we can just inform them about updating our privacy policy and present them with their rights?

  • “opt-in” consent

    1. For marketing/sales are we required to get new consent for existing leads/prospects/clients OR are we ok to only send the new consent moving forward as part of GDPR compliance”

  • Data Processing Agreement and Data Processing Addendum

    We usually have our on bilateral commercial agreement with our service provider/partner/supplier. After the implementation of the GDPR, we need to issue another Data Processing Addendum to our partner/supplier. How about the agreement sign after the 25 of May 2018 onward? Do we still need to sign a commercial agreement + Data Processing Addendum? or just All in One agreement with our partner/supplier/service provider? what is the different between Data Processing

  • Processing protocol

    1. When exactly and how often do I have to complete a processing protocol?

  • Documentation templates for GDPR and ISO 27001

    We note that the information is for company internal and not for commercial use. We are interested in the specifics of that - we want to be compliant and may need to demonstrate this to some of our customers, and some of the documents such as the supplier data processing agreements need to be shared and signed by suppliers to be valid. Quite a few other documents are to inform customers/suppliers. Further, it is normal practice for companies to place their privacy policy on their website - would this count as a breach?

  • Mailing list and GDPR

    I have a customer that uses mailing lists acquired from mailing list brokers, public domain lists and published books with contact details. The company has a database of approximately 10,000 email contacts of which 6,000 are current customers with active engagement.

  • Facebook Marketing

    I have a small company that deals with the sale of T-shirts. I use Facebook Marketing. The following looks like this:
Page 69 of 97 pages