EU GDPR - Expert Advice Community



Create New Topic As guest or Sign in

HTML tags are not allowed

Assign topic to the user

  • Supplier Documents

    In real simple term without naming all the articles - what should I be getting from our supplier to check GDPR and subsequently provide to my customers? I have so far: - GDPR Compliance Questionnaire - Supplier Data Processing Agreement signed - Request their data protection policy? - Request their data retention policy? - Request their Breach Response procedure? Am I on the right path? Thanks
  • Privacy Notices

    1. We are screen grabbing comments and sending to clients from Facebook, that includes names/comments of other Facebook users. We use these in our reports and send to clients. Are we able to still do this?
  • Standard list of types of personal data

    We were wondering if there was a standard list of types of personal data, we have a list from a customer that defines 9 types including “Financial Data” and “Employment Details” etc.? Also is there a standard list of Categories of Data Subject, again we have a list of 9 from a customer including “Agents and Contractors” and “Suppliers” etc?
  • Process for changing purpose

    Where a new, and formerly not envisaged purpose for using previously collected data defined, and where the original purpose was covered by a "blanket" legal ground, such as “legitimate interest" and so is the new purpose, is it still required to acquire consent from the data subjects. (as suggested in the template Privacy Policy). Or would an update to the Privacy notice for the particular processing activity be sufficient?
  • mailing lists

    Hi, Does anyone know whether or not mailing lists can be used if the company who sell them are stating they are GDPR compliant and all prospects have opted in. What evidence would we, as a company, need to hold to evidence that
  • Data processors

    Is there a version of the GDPR document package, or additional documents that are intended for data processors? I purchased the original EU_GDPR_Documentation_Toolkit, but I really only see documents for data controllers.
  • Company data

    We have already resolved the question about customers in B2B environment, but why doesn't appear in the scope the "customers employees" category..? What the difference between “customers" and “suppliers" from this point of view of their employees..?
  • DPIA

    1. How to conduct PIA or DPIA?
  • EU GDPR document

    In document 6.2 the title reads "Standard contractual clauses for the transfer of personal data from the Community to third countries (controller to controller transfers)- “the community” would appear to need to be changed to “Company”. Please can you confirm.
  • EU GDPR questions

    1. My question is what documentation do we require and what are our responsibilities for both managed and unmanaged services.
Page 85 of 96 pages