EU GDPR - Expert Advice Community

Home / EU GDPR

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 ISO 9001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Product: ISO 27001/Risk Assessment Table Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Certification ISO27001
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Right to Be Forgotten/Erasure

    If a data subject request to be forgotten, however the retention period has been contractually defined between the processor and the controller as X years and the data subject consented to X years, do they have the right to be forgotten or simply to not be processed anymore based on withdrawal of their consent?

  • DPO Training

    I have a question regarding the legitimate purposes and principals practice exam. There is a question that is as follows:

  • GDPR DPO Job Description

    Regarding the conflict of interest clause in the DPO Job Description document, what options are there if the DPO holds another role at the company that does require him to determine the purposes or means of processing personal data? Would it satisfy GDPR requirements for him to sign an additional agreement ensuring that the responsibilities of that other function do not affect the carrying out of the DPO role?

  • B2B - Supplier information

    I would like to clarify if supplier information provided to my organization such as Name , address, email address on invoices should be treated as personal data under GDPR. Is B2B out of scope?

  • Users agreement

    The kind of information I am looking for is whether a website will be able to automatically serve location-based content. Since this require the website to identify the user's location (considered personal data under the GDPR) - would users need to agree to the website extracting this information automatically?

  • Cross border processing

    I would like to know if cloud services are considered as “cross border processing” like google or Microsoft?

  • Supervisory authority

    I'm going through the personal data protection policy. There's a section on supervisory authority.

  • Consent and Privacy notice

    If possible, I would just need a few clarifications:

  • Personal data visibility

    I have another question for you about GDPR implementation.

  • GDPR in school

    We came across another weird situation. There is a German based school in the US that we supply our product to. This is a school for children of EU citizens that currently live in the US and send their children to this school.
Page 81 of 97 pages