Guest user Created: Jun 18, 2019 Last commented: Jun 19, 2019

GDPR compliance

Hi, can the GDPR be imposed against private person or just organisations. For example, if an employee of a company that is processing is based outside EU, will the Standard contractual clauses need to be signed or does it only depend on where the company he works for is based?

0 0

Assign topic to the user

Select user

Expert

Andrei Hanganu Jun 18, 2019

Answer:

If the processing is undertaken by an employee of an EU-established company and it is done only exceptionally for example when the employee is on a business trip then we are not in front of a cross border data transfer.

Quote

0 0

Guest

koji33 Jun 19, 2019

What if it is not exceptionally , but rather that the employee lives outside EU and "works from home" ?

Quote

0 0

Expert

Andrei Hanganu Jun 20, 2019

In this case, the employer should ensure that any data on the device cannot be stored or processed locally.

One solution would be using a "remote desktop" solution such as Citrix. In this case, we would not be facing a data transfer.

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Jun 18, 2019

Jun 19, 2019

Expert Advice Community

GDPR compliance

GDPR compliance

Assign topic to the user

Comment as guest or Sign in

Suggested Topics

GDPR compliance for B2B software applications

Proactively applying for GDPR compliance

GDPR Compliance questions