Lesson 1: Privacy Isn’t Optional — It’s a Safety Issue In the SportAdmin breach, attackers gained access to a database containing personal information from over

Key Takeaways on AI Compliance and the Role of Privacy Professionals The GDPR Register webinar brought together privacy professionals and AI experts to explore the

The General Data Protection Regulation (GDPR) establishes the requirement for certain organizations to appoint a Data Protection Officer (DPO). The role of the DPO is

Environmental, Social, and Governance (ESG) compliance has evolved into a critical factor in corporate sustainability. Investors, regulators, and customers now expect businesses to demonstrate ethical

In today’s globalized business environment, data flows across borders are essential—but they must be secure and compliant with the General Data Protection Regulation (GDPR). A

Google reCAPTCHA is a popular tool that protects websites from spam and abuse by distinguishing between humans and bots. But its use of cookies, tracking,

The General Data Protection Regulation (GDPR) places significant emphasis on securing personal data, particularly in Articles 32-34, which outline requirements for appropriate technical and organizational

Biometric data is classified by the GDPR as a special category of personal data, subject to enhanced protection. This means processing biometric data is prohibited

Every so often, viral posts resurface on Facebook and Instagram declaring: “I do not allow Meta to use my data, pictures, or information in any

Netflix is at the centre of a data privacy cliffhanger as the Dutch DPA indicates it is likely to be slapped with a €475 million

Lessons for Legal Teams: Avoiding Costly Mistakes in Data Privacy Compliance Data privacy is no longer a secondary concern for businesses—it’s a legal requirement with

Six years since GDPR came into force, the promise of stronger data protection is being undermined by the rise of “pay or consent” models. These

LinkedIn Ireland was recently fined a record-breaking €310 million by the Irish Data Protection Commission for GDPR violations, underscoring the urgent need for businesses to

The General Data Protection Regulation (GDPR) is a European Union law that protects the privacy and personal data of individuals in the EU and EEA.

The General Data Protection Regulation (GDPR) is a European regulation establishing the framework for personal data protection of individuals in the EU and EEA. It

Since General Data Protection Regulation (GDPR) entered into force, the personal data protection has become more challenging to the Healthcare sector. Meaning that patient data

In this article, we will introduce you to some useful GDPR software tools which may help you reach GDPR compliance and maintain it. We will

A lawful (or legal) basis for processing data must be satisfied before a business can process any personal data. Article 6 of the GDPR describes six

The European Commission concluded that the United States ensures adequate protection for personal data transferred from the EU to U.S. companies under the EU-U.S. Data Privacy

Introduction Data privacy and security are of utmost concern in the digital era of today, especially when it comes to data protection regulations like the

What is a Data Processing Agreement (DPA)? A Data Processing Agreement (DPA) is a legally binding document to be entered into between the controller and the

Direct marketing includes text messages (SMS) and emails that a customer receives from a product or service provider. But activities of direct marketing may include

The GDPR has put strict rules in place, when it comes to data transfer to third countries or international organizations. Which countries are third countries? Third

What are the records of processing activities (ROPA)? Article 30 of the EU General Data Protection Regulation (GDPR) requires organisations to maintain internal records, which

What is Data Breach? According to General Data Protection Regulation (GDPR), a personal data breach is a security incident that results in the accidental or

Data Protection Authorities (DPA) Data Protection Authorities (DPA) are independent public authorities that supervise, through investigative and corrective powers, the application of the GDPR. They

This is a simple GDPR compliance checklist for data controllers that you can use to ensure you have considered most important aspects of the General Data

What are ‘controllers’ and ‘processors’? With this short and simple article, we will try to explain the basics of controllers and processors. Controllers are the

As we see every day, most companies and organisations still keep their Records of Processing Activities in spreadsheets. Through our experience, we have seen a

In the light of the recent ruling of the European Court of Justice, website owners have to bear in mind their data protection responsibilities when

A year after GDPR came into force, the Lithuanian Data Protection Authority (VDAI) has issued its first administrative fine. UAB ‘Mister Tango’, a company that provides financial

An article was published recently in the Helsingin Salomat about the Finnish Data Protection Authority who had ordered a payment and financing solution company to correct

In light of the latest survey conducted by the CPO Magazine, we are looking into the role of the Data Protection Officer (DPO). In this

Just recently, a report was published based on a survey of 252 global privacy professionals working for a wide range of organizations across 14 different

There are two separate EU level regulations to follow when processing personal data for direct marketing in B2B and B2C activities. Privacy and Electronic Communication

The General Data Protection Regulation (GDPR) has introduced a new obligation, which requires companies and organizations to carry out data protection impact assessments if the personal

Nowadays almost every business sector integrates digital technologies. IT infrastructure and practice, if not updated regularly, ages and becomes weaker. Therefore, because of the amount and

The GDPR, that came into force on the 25th of May, 2018, expanded the EU‘s data protection area coverage, introduced innovations that have an effect

Hospitality sector (accommodation, restaurants & bars, travel & tourism and leisure) has one of the largest shares of personal data collected by sector. Therefore, necessary

Many companies use Google Analytics as their assistive tool in order to collect valuable information about customer behaviour on websites, mobile apps etc. By default, Analytics

After GDPR regulation coming into force on the 25th of May, the Finnish Data Protection Authority’s office was flooded with complaints about possible infringements. This

Lithuanian Data Protection Authority recently completed the investigation on proper personal data processing for direct marketing purposes. The target was the major food, household goods,

GDPR lists six lawful bases for processing of personal data, and legitimate interest is one of them. There is no particular purpose defined, therefore, it

How does GDPR affect Direct Marketing and Profiling Direct marketing and consumer behavioral habits (profiling) are the key tools a company uses to sell their

Hi, I am Sarune – Country Manager (Lithuania) for GDPR Register. I know that GDPR compliance can be a headache sometimes, which is why I

Multi-tiered approach to GDPR fines and penalties General Data Protection Regulation has introduced a tiered approach to fines, meaning that the severity of the breach will

This is the question that many computer users are receiving daily. What does it mean and why is it being asked? It is a part

For those living in blissful ignorance: starting from May 25th 2018 a new General Data Protection Regulation (GDPR) will enter into force, which sets forth