EU GDPR - Expert Advice Community

Home / EU GDPR

Discussions

Top Contributors

Expert

Rhand Leal

4151
Discussions
Expert

Carlos Pereira da Cruz

1915
Discussions
Expert

Dejan Kosutic

365
Discussions

Most Popular Tags

Product: Conformio Product: ISO 27001 Documentation Toolkit Product: ISO 13485 & MDR Integrated Documentation Toolkit ISO 27001 ISO 9001 Product: ISO 27001 & ISO 22301 Premium Documentation Toolkit Risk Assessment Product: ISO 13485 Documentation Toolkit ISMS Internal Audit register of requirements Certification Product: ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit Product: ISO 27001/Risk Assessment Table ISO 22301
Select
CREATE NEW TOPIC +
Guest

Guest

Create New Topic As guest or Sign in

HTML tags are not allowed

Select

Assign topic to the user

  • Privacy Notices

    How are the smallest businesses affected, and are all businesses required to do this; if not which types of businesses are exempt? Are you required to do this if your business is an eCommerce site that just takes name, email and tel details? Are you required to do this if you simply handle inquiries from clients via online forms and hold no databases? How does this affect the use of facilities such as Mailchimp and Awebber for email gathering and newsletters etc.? What if you generate leads for a company and pass on details of either businesses or private individuals as part of that contract? How would you deal with that aspect?

  • EU GDPR in school

    In a School environment, how do we ensure that we have a Privacy Notice that is suitable for a 13 year old? Particularly as not all children will have the same attainment level.

  • Data Disclosure Form

    Since Data Disclosure Form is a mandate in GDPR, what should be the contents of that (if you can explain in short)?

  • Privacy notice

    If there is continuing info being collected such as from an employer, notice could only be given once upfront, correct?

  • EU GDPR toolkit documents

    Beside Privacy Notice do we have to make public available other documents related to GDPR?

  • Handling the privacy

    Employer (e.g., xxx) sends us contact information for every employee globally. Occasionally, a user requests to opt out of our system and prefers we forget them. However, information about them is still delivered everyday from the employer. What are the options for us to handle the privacy of the individual while handling the requests of our customer (the individual's employer)?

  • Medical data

    What about medical data provided to a doctor, where we provide an online platform for those doctors to organize their agendas with private data. Should the doctor ask the patient their consent for using our online agenda?

  • Minimum standard

    Is there a minimum standard for notice over phone sales activities?

  • DPO

    Are there fixed qualifications for a DPO, or can a small company nominate a member of staff to be a DPO? Should they be referred to as something else instead?

  • Inventory of processing activities

    Do you have generic lists with 1) the most used processing activities (i.e. for the processing inventory) and 2) general documents for the retention schedule? I had hoped these two documents in particular came pre-populated so that they would be easy to adapt by deleting non-relevant and adding company specific.
Page 90 of 97 pages