Assign topic to the user
· DPAs with processors
· Privacy notices to individuals
· Safeguards for transfer of data – if the EU processor transfers data to another non-EU processor, who exactly should have safeguards in place such as for example SCC and Privacy Shield certification: the controller himself or the specific processors that are transferring data between them?
· EU representative
Anything else you can add?
Answer:
Since you are dealing with sensitive personal data you should also focus on preventing and if necessary notify any data breaches and do not forget about Data Protection Impact Assessments.
To learn more about DPIAs check out our webinar “Seven steps of Data Protection Impact Assessment (DPIA) according to EU GDPR” (https://advisera.com/eugdpracademy/webinar/seven-steps-of-data-protection-impact-assessment-dpia-according-to-eu-gdpr-free-webinar-on-demand/ ).
Comment as guest or Sign in
Jul 30, 2018