Expert Advice Community

Guest

General privacy policy/notice vs. entity-specific policy/notice

  Quote
Guest
Guest user Created:   Aug 08, 2022 Last commented:   Aug 16, 2022

General privacy policy/notice vs. entity-specific policy/notice

For a company that has subsidiaries with different processing, is it ideal for them to have a general privacy policy or notice or entity-specific ones?

0 0

Assign topic to the user

EU GDPR DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

EU GDPR DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Tudor Galos Aug 16, 2022

It all depends on the role of the subsidiaries, whether they are data controllers or data processors. If they are data processors, it is the role of the data controller to make sure that data subjects are informed by means of a privacy notice. If they are data controllers, they need to make sure that they have a privacy notice describing their processing operations. What is really important is to make sure that the data subject is informed. The privacy notice or notices can reside in a single location, however, they must be easy to read and understand, and contain information about all the processing operations.

Please visit these resources as well:

Tudor Galos
Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Aug 08, 2022

Aug 16, 2022

Suggested Topics