EU GDPR - Expert Advice Community

Home / EU GDPR

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 ISO 9001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Certification Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 22301
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Privacy notice/ Privacy policy

    1. Could you please specify the difference between Privacy notice/ Privacy policy . Are both of them required ?

  • Supplier Data processing Agreement

    1. Is there any contract development document in the EU GDPR Documentation Toolkit (if I want to establish a contract between the controller and the processor)?

  • Data Portability

    I’m unsure about how we will provide users with a copy of their personal data. Is there any guidance on this? What type of data should be send to them? Eg. can ex-employees request copies of all emails they sent ?

  • The treatment register

    I find myself mainly in the situation of having showcase sites. Some of them have only one contact form, others only have anonymous google analytics cookies. In other cases I have showcase sites made for example with cms like WordPress or Joomla and have only the technical cookies necessary for the site and that do not collect personal data. In which cases do I have to draw up the treatment register and draw up the information for the person concerned?

  • Data Subject Access Request Procedure

    Just wanted to ask, if in the Advisera documentation there is any document discussing the ‘Right to be forgotten’?

  • EU GDPR

    Does the storage of customer master data (name, telephone, e-mail, address) in the address book of Apple and its synchronization via iCloud already count as the transmission of data to third countries? When using iCloud, do you have to take special precautions in this case, or should I completely discourage using I Synchronization?

  • Transmission of data to third countries

    Does the storage of customer master data (name, telephone, e-mail, address) in the address book of Apple and its synchronization via iCloud already count as the transmission of data to third countries? When using iCloud, do you have to take special precautions in this case, or should I completely discourage using I Synchronization?

  • Signing DPA with large companies

    Do we need a signed contract and DPA with large companies like Microsoft?

  • IT Provider

    We use an IT service provider X (they are our data processors). Provider X sub-contracts out to Company Y. We pay Provider X for the services of Company Y. Does that mean we need a data processor agreement only with Provder X or also with Company Y ? Our IT Service Provider X has said that we must sign a separate agreement with company Y (also they haven't listed Company Y on DPA as sub-processors) .Should we have a signed agreement with Provider X sub-contractor Y ?

  • GDPR Types of data

    I am drafting a Data transfer agreement in compliance with GDPR requirements and I would like to know whether I need to list the types of data that is being transferred in the agreement and if so what level of detail is required?
Page 74 of 97 pages