GDPR Awareness. Kevin Styles. Certified Information Privacy Professional - Europe Member of International Association of Privacy professionals
|
|
- Aubrey Lawson
- 5 years ago
- Views:
Transcription
1 GDPR Awareness Kevin Styles Certified Information Privacy Professional - Europe Member of International Association of Privacy professionals
2 Introduction Privacy and data protection are fundamental rights protected by EU law providing a legal basis to support the rights of data subjects under the GDPR What is GDPR? General Data Protection Regulation Will supersede existing Data Protection Act 1998 Fundamental rights of privacy and data protection
3 What is Data Protection? Aims to protect the privacy of individuals and prevent misuse of their information Natural Persons, Data Subjects Categories of data Personal data Name, address, address, DOB, mobile number, passport number, NI number etc. Also now includes IP address and cookies Special categories of data Specific categories of personal data that require extra protection under data protection law e.g. Ethnicity, race, health, sexual orientation, Trade union, biometric, religious beliefs, political opinions
4 Who enforces data protection? Supervisory authorities in member states In the UK, Information Commissioners Office (ICO). To what does the GDPR apply? Processing of personal data Processing any operation or set of operations which is performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction
5 Data Processing Principles (Article 5) Controllers and Processors are responsible for, and must take action to, demonstrate compliance
6 To whom does GDPR apply? Data subjects Controllers and Processors established in the EU, regardless of where any processing takes place Controllers and Processors not in the EU Offering goods or services in the EU Monitoring behavior of data subjects Controllers not established in the EU, but in a place where member state law applies via international law
7 Data Controllers and Processors Controllers Natural or legal person, public authority, agency or other body which alone, or jointly with others, determines the purposes and means of the processing of personal data Controllers determine: What data is required; what data will be used for; how data will be used/processed; how data will be stored; how data will be protected; how data will be disposed; who can process the data. Joint Controllers Alone or jointly with others, determines the purposes and means of personal data processing Must have arrangement in place between them to apportion data protection compliance responsibilities of each Controller
8 Responsibilities of the Controller include: Providing information to the data subjects Ensuring the process has a legitimate basis Ensuring data subjects rights are honoured Carrying out Data Protection Impact Assessments (DPIA) Ensuring appropriate security for data Notifying Supervisory Authorities and data subjects of breaches What is a Personal Data Breach? a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data, transmitted, stored or otherwise processed
9 Processors natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller Works under contract for the controller Obligations under the Regulation include: Act only on the instructions of the controller Ensure appropriate security to protect personal data is in place Can subcontract the work only on written agreement from controller Shares liability for data breaches with controller Can be legally pursued by data subjects for data breaches
10 Lawful Basis for Processing (Article 6) Consent Performance of a contract Legal obligation Vital interests Public interest or exercise of official authority vested in Controller Legitimate interest Most appropriate depends on purpose and relationship with the data subject Only need one of the above. No single lawful basis is best or more important than the others. If you cannot demonstrate a lawful basis for processing personal data you should not be processing it
11 Data Subject Rights (Articles 12 23) Right to be informed Right of access Right of rectification Right to erasure Right to restriction of processing Right to data portability Right to object Automated decision making / profiling
12 Demonstrating Compliance Accountability delivering demonstrable compliance via risk management. Privacy notice Data Protection Impact Assessment (DPIA) Privacy by Design and Default Documentation Training DPO
13 International Data Transfers Article 45(1) A transfer of personal data to a third country or an international organisation may take place where the Commission has decided that the third country, a territory or one or more specified sectors within that third country, or the international organisation in question ensures an adequate level of protection Adequate countries EU-US Privacy Shield Standard contractual clauses Binding Corporate Rules (BCR Article 47) Explicit consent Approved codes of conduct (Article 40) Approved certification (Article 42)
14 Considerations for PSCM Practitioners Review supplier contracts where personal data transfer occurs Determine relationship with suppliers and clients Supplier compliance Contracts between Controllers and Processors Contracts between Controllers and Controllers Model Clauses Controller to Controller Controller to Processor International data transfers Inclusion in tenders LOGIC Ts&Cs? FPAL?
15 Any questions?
EXIN Privacy and Data Protection Foundation. Preparation Guide. Edition
EXIN Privacy and Data Protection Foundation Preparation Guide Edition 201701 Content 1. Overview 3 2. Exam requirements 5 3. List of Basic Concepts 9 4. Literature 15 2 1. Overview EXIN Privacy and Data
More informationFirst Components Ltd, Savigny Oddie Ltd, & Datum Engineering Ltd. is pleased to provide the following
Privacy Notice Introduction This document refers to personal data, which is defined as information concerning any living person (a natural person who hereafter will be called the Data Subject) that is
More informationThis policy sets out how Legacy Foresight and its Associates will seek to ensure compliance with the legislation.
Privacy Notice August 2018 Introduction The General Data Protection Regulation (GDPR) is European wide data protection legislation that requires organisations working with individuals based in the European
More informationBiometric Data, Deidentification. E. Kindt Cost1206 Training school 2017
Biometric Data, Deidentification and the GDPR E. Kindt Cost1206 Training school 2017 Overview Introduction 1. Definition of biometric data 2. Biometric data as a new category of sensitive data 3. De-identification
More informationThe EU's new data protection regime Key implications for marketers and adtech service providers Nick Johnson and Stephen Groom 11 February 2016
The EU's new data protection regime Key implications for marketers and adtech service providers Nick Johnson and Stephen Groom 11 February 2016 General Data Protection Regulation ("GDPR") timeline 24.10.95
More informationDr Nicholas J. Gervassis University of Plymouth THE EMERGING UK DATA PROTECTION FRAMEWORK AND BEYOND
Dr Nicholas J. Gervassis University of Plymouth THE EMERGING UK DATA PROTECTION FRAMEWORK AND BEYOND PRIVACY DATA PROTECTION Organisation for Economic Cooperation and Development (OECD) Guidelines on the
More informationPrivacy Policy SOP-031
SOP-031 Version: 2.0 Effective Date: 18-Nov-2013 Table of Contents 1. DOCUMENT HISTORY...3 2. APPROVAL STATEMENT...3 3. PURPOSE...4 4. SCOPE...4 5. ABBREVIATIONS...5 6. PROCEDURES...5 6.1 COLLECTION OF
More informationThe GDPR and Upcoming mhealth Code of Conduct. Dr Etain Quigley Postdoctoral Research Fellow (ARCH, UCD)
The GDPR and Upcoming mhealth Code of Conduct Dr Etain Quigley Postdoctoral Research Fellow (ARCH, UCD) EU General Data Protection Regulation (May 2018) First major reform in 20 years 25 th May 2018 no
More informationIAB Europe Guidance THE DEFINITION OF PERSONAL DATA. IAB Europe GDPR Implementation Working Group WHITE PAPER
IAB Europe Guidance WHITE PAPER THE DEFINITION OF PERSONAL DATA Five Practical Steps to help companies comply with the E-Privacy Working Directive Paper 02/2017 IAB Europe GDPR Implementation Working Group
More informationISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Privacy framework
INTERNATIONAL STANDARD ISO/IEC 29100 First edition 2011-12-15 Information technology Security techniques Privacy framework Technologies de l'information Techniques de sécurité Cadre privé Reference number
More informationhttps://www.icann.org/en/system/files/files/interim-models-gdpr-compliance-12jan18-en.pdf 2
ARTICLE 29 Data Protection Working Party Brussels, 11 April 2018 Mr Göran Marby President and CEO of the Board of Directors Internet Corporation for Assigned Names and Numbers (ICANN) 12025 Waterfront
More informationRobert Bond Partner, Commercial/IP/IT
Using Privacy Impact Assessments Effectively robert.bond@bristows.com Robert Bond Partner, Commercial/IP/IT BA (Hons) Law, Wolverhampton University Qualified as a Solicitor 1979 Qualified as a Notary Public
More informationWhat does the revision of the OECD Privacy Guidelines mean for businesses?
m lex A B E X T R A What does the revision of the OECD Privacy Guidelines mean for businesses? The Organization for Economic Cooperation and Development ( OECD ) has long recognized the importance of privacy
More informationEuropean Union General Data Protection Regulation Effects on Research
European Union General Data Protection Regulation Effects on Research Mark Barnes Partner, Ropes & Gray LLP Co-Director, Multi-Regional Clinical Trials Center of Brigham and Women s Hospital and Harvard
More informationEmployees, contractors and other personnel of KKR should note that a separate privacy notice will be made available to them.
Version 18 May 2018 PRIVACY NOTICE FOR EU RESIDENTS KKR respects your privacy and is committed to protecting your personal information. This privacy notice will inform you as to how we look after your
More informationThe General Data Protection Regulation and use of health data: challenges for pharmaceutical regulation
The General Data Protection Regulation and use of health data: challenges for pharmaceutical regulation ENCePP Plenary Meeting- London, 22/11/2016 Alessandro Spina Data Protection Officer, EMA An agency
More informationCCTV Policy. Policy reviewed by Academy Transformation Trust on June This policy links to: T:Drive. Safeguarding Policy Data Protection Policy
CCTV Policy Policy reviewed by Academy Transformation Trust on June 2018 This policy links to: Safeguarding Policy Data Protection Policy Located: T:Drive Review Date May 2019 Our Mission To provide the
More informationLAB3-R04 A Hard Privacy Impact Assessment. Post conference summary
LAB3-R04 A Hard Privacy Impact Assessment Post conference summary John Elliott Joanne Furtsch @withoutfire @PrivacyGeek Table of Contents THANK YOU... 3 WHAT IS PRIVACY?... 3 The European Perspective...
More informationCCTV Policy. Policy reviewed by Academy Transformation Trust on June This policy links to: Safeguarding Policy Data Protection Policy
CCTV Policy Policy reviewed by Academy Transformation Trust on June 2018 This policy links to: Located: Safeguarding Policy Data Protection Policy Review Date May 2019 Our Mission To provide the very best
More informationWireless Sensor Networks and Privacy
Wireless Sensor Networks and Privacy UbiSec & Sens Workshop Aachen 7.2.2008 Agenda ULD who we are and what we do Privacy and Data Protection concept and terminology Privacy and Security technologies a
More informationGDPR Implications for ediscovery from a legal and technical point of view
GDPR Implications for ediscovery from a legal and technical point of view Friday Paul Lavery, Partner, McCann FitzGerald Ireland Meribeth Banaschik, Partner, Ernst & Young Germany mccannfitzgerald.com
More informationEU-GDPR The General Data Protection Regulation
EU-GDPR The General Data Protection Regulation Lucas Heymans, Higher Education Applications Product Strategy EMEA Safe Harbor Statement The following is intended to outline our general product direction.
More informationOcean Energy Europe Privacy Policy
Ocean Energy Europe Privacy Policy 1. General 1.1 This is the privacy policy of Ocean Energy Europe AISBL, a non-profit association with registered offices in Belgium at 1040 Brussels, Rue d Arlon 63,
More informationICO submission to the inquiry of the House of Lords Select Committee on Communications - The Internet : To Regulate or not to Regulate?
Information Commissioner s Office ICO submission to the inquiry of the House of Lords Select Committee on Communications - The Internet : To Regulate or not to Regulate? 16 May 2018 V. 1.0 Final 1 Contents
More informationInterest Balancing Test Assessment on the processing of the copies of data subjects driving licences for the MOL Limo service
1 Legitimate interest of the controller or a third party: General description of the processing environment Users can commence the registration required for using the MOL LIMO service in the Mobile Application
More informationIET Guidelines for Volunteers: Data Protection
SERIAL NO: Issue No: 3.0 IET Guidelines for Volunteers: Protection Effective Date Approved by Author February 2012 Executive Committee Richard Best Date of Last Review Reviewed By Date of Next Review February
More informationPrivacy Procedure SOP-031. Version: 04.01
SOP-031 Version: 04.01 Effective Date: 01-Mar-2017 Table of Contents 1. DOCUMENT HISTORY... 3 2. APPROVAL STATEMENT... 3 3. PURPOSE... 4 4. SCOPE... 4 5. ABBREVIATIONS... 4 6. PROCEDURES... 5 6.1 COLLECTION
More informationThe new GDPR legislative changes & solutions for online marketing
TRUSTED PRIVACY The new GDPR legislative changes & solutions for online marketing IAB Forum 2016 29/30th of November 2016, Milano Prof. Dr. Christoph Bauer, GmbH Who we are and what we do Your partner
More informationPersonal Data Protection Competency Framework for School Students. Intended to help Educators
Conférence INTERNATIONAL internationale CONFERENCE des OF PRIVACY commissaires AND DATA à la protection PROTECTION des données COMMISSIONERS et à la vie privée Personal Data Protection Competency Framework
More informationThe Information Commissioner s response to the Draft AI Ethics Guidelines of the High-Level Expert Group on Artificial Intelligence
Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF T. 0303 123 1113 F. 01625 524510 www.ico.org.uk The Information Commissioner s response to the Draft AI Ethics Guidelines of the High-Level Expert
More informationViolent Intent Modeling System
for the Violent Intent Modeling System April 25, 2008 Contact Point Dr. Jennifer O Connor Science Advisor, Human Factors Division Science and Technology Directorate Department of Homeland Security 202.254.6716
More informationProtection of Privacy Policy
Protection of Privacy Policy Policy No. CIMS 006 Version No. 1.0 City Clerk's Office An Information Management Policy Subject: Protection of Privacy Policy Keywords: Information management, privacy, breach,
More informationHL7 Standards and Components to Support Implementation of the European General Data Protection Regulation (GDPR)
HL7 Standards and Components to Support Implementation of the European General Data Protection Regulation (GDPR) Alexander Mense - University of Applied Sciences Vienna Bernd Blobel - Medical Faculty,
More informationHBM4EU project. Information, Invitation and Informed Consent Lisbeth E. Knudsen, Berit A. Faber. Information and recruitment of participants
HBM4EU project Information, Invitation and Informed Consent Lisbeth E. Knudsen, Berit A. Faber Information and recruitment of participants 1 st HBM4EU Training School 2018 B01-Ethics, Session 3: Information
More informationRules of the prize game Sa Zaba karticama dobivam više!
The purpose of these Rules is to ensure all participants have equal chance to enter the Prize Game and win prizes after meeting the requirements set forth in these Rules. MPG d.o.o. (with their registered
More informationCorporate Services. Yes. Chief Executive Officer. Head of Legal and Compliance. Policy and Compliance Officer
Privacy Policy Category/Business Group Published Externally (Yes/No) Approver Responsible Officer Contact Officer Corporate Services Yes Chief Executive Officer Head of Legal and Compliance Policy and
More informationPolish Science Database (BWNP)
Warsaw, 24 May 2018 POLISH SCIENCE DATABASE Mandatory information to be provided under Articles 13 and 14 of the GDPR PERSONAL DATA OF SCHOLARS AND INDIVIDUALS SUBMITTING SUCH DATA FOR THE Polish Science
More informationTHE UNIVERSITY OF AUCKLAND INTELLECTUAL PROPERTY CREATED BY STAFF AND STUDENTS POLICY Organisation & Governance
THE UNIVERSITY OF AUCKLAND INTELLECTUAL PROPERTY CREATED BY STAFF AND STUDENTS POLICY Organisation & Governance 1. INTRODUCTION AND OBJECTIVES 1.1 This policy seeks to establish a framework for managing
More informationDEVELOPMENTS IN EU MDD & IVDD SOFTWARE REGULATION
Objectives DEVELOPMENTS IN EU MDD & IVDD SOFTWARE REGULATION Some brief remarks on data protection Current regulation of medical devices software Overview of EU medical devices directives revision process
More informationARTICLE 29 Data Protection Working Party
ARTICLE 29 Data Protection Working Party Brussels, 10 April 2017 Hans Graux Project editor of the draft Code of Conduct on privacy for mobile health applications By e-mail: hans.graux@timelex.eu Dear Mr
More informationLegal Aspects of the Internet of Things. Richard Kemp June 2017
Legal Aspects of the Internet of Things Richard Kemp June 2017 LEGAL ASPECTS OF THE INTERNET OF THINGS TABLE OF CONTENTS Para Heading Page A. INTRODUCTION... 1 1. What is the Internet of Things?... 1 2.
More informationFact Sheet IP specificities in research for the benefit of SMEs
European IPR Helpdesk Fact Sheet IP specificities in research for the benefit of SMEs June 2015 1 Introduction... 1 1. Actions for the benefit of SMEs... 2 1.1 Research for SMEs... 2 1.2 Research for SME-Associations...
More informationAGREEMENT on UnifiedPrinciples and Rules of Technical Regulation in the Republic of Belarus, Republic of Kazakhstan and the Russian Federation
AGREEMENT on UnifiedPrinciples and Rules of Technical Regulation in the Republic of Belarus, Republic of Kazakhstan and the Russian Federation The Republic of Belarus, Republic of Kazakhstan and the Russian
More informationCommonwealth Data Forum. Giovanni Buttarelli
21 February 2018 Commonwealth Data Forum Giovanni Buttarelli Thank you, Michael, for your kind introduction. Thank you also to the Commonwealth Telecommunications Organisation and the Government of Gibraltar
More informationOpinion of the European Data Protection Supervisor
Opinion of the European Data Protection Supervisor on the Proposal for a Directive of the European Parliament and of the Council on waste electrical and electronic equipment (WEEE). THE EUROPEAN DATA PROTECTION
More informationIAB Europe Response to European Commission Consultation on the DP Framework
Interactive Advertising Bureau Rue Bara 175 1070 Brussels Belgium IAB Europe Response to European Commission Consultation on the DP Framework The Interactive Advertising Bureau Europe * ( IAB ) welcomes
More informationPrivacy by Design Assessment and Certification. For discussion purposes only
Privacy by Design Assessment and Certification For discussion purposes only Privacy by Design The Framework Privacy by Design 2 Adoption of Privacy by Design as an International Standard Landmark Resolution
More informationGUIDELINES ON PRIVACY BY DESIGN AND PRIVACY IMPACT ASSESSMENT
Document 2.1.4-7 GUIDELINES ON PRIVACY BY DESIGN AND PRIVACY IMPACT ASSESSMENT Component 2 Activity 2.1.4-4 Draft version - November 2011 The content of this report is the sole responsibility of Human
More informationFaculteit Rechtsgeleerdheid Faculteit Natuurkunde, Wiskunde en Informatica Leibniz Center for Law C-ITS and GDPR
Faculteit Rechtsgeleerdheid Faculteit Natuurkunde, Wiskunde en Informatica Leibniz Center for Law C-ITS and GDPR Wouter van Haaften, Tom van Engers What does traffic with C-ITS look like? How does Cooperative
More informationSwedish Proposal for Research Data Act
Swedish Proposal for Research Data Act XXXII Nordic Conference on Legal Informatics November 13-15 2017 Cecilia Magnusson Sjöberg, Professor Faculty of Law Stockholm University Today s presentation about
More informationDaPIS: an Ontology-based Data Protection Icon Set
DaPIS: an Ontology-based Data Protection Icon Set Monica Palmirani*, Arianna Rossi* Law via the Internet Florence, October 11, 2018 *CIRSFID, University of Bologna; ICR, University of Luxembourg The information
More informationD2. Results of the feasibility analysis
European Commission Eurostat/G6 Contract No. 50721.2013.002-2013.169 Analysis of methodologies for using the Internet for the collection of information society and other statistics D2. Results of the feasibility
More informationGDPR IMPLEMENTATION SISCON 2018 CONFERENCE 13/09/2018
GDPR IMPLEMENTATION SISCON 208 CONFERENCE 3/09/208 FOUNDED IN 999 AND TODAY ~70 CONSULTANTS AND ~600 INTERVIEWERS SISCON CONFERENCE 208 2 WE CONDUCT FULL SERVICE MARKET RESEARCH YET SPECIALIZED ANALYZE
More information510 Data Responsibility Policy
510 Data Responsibility Policy Rationale behind this policy For more than 150 years, the Red Cross has been guided by principles to provide impartial humanitarian help. The seven fundamental principles
More informationST. MARY in the MARSH PARISH COUNCIL
ST. MARY in the MARSH PARISH COUNCIL DATA PROTECTION POLICY 1. THE MEANING OF PERSONAL DATA (a). Personal data is any data that relates to a living person who can be recognised from that data. Data exists
More informationPrivacy Impact Assessments
Data Protection Office Volume 6 Guidelines on Privacy Impact Assessments Mrs Drudeisha Madhub Data Protection Commissioner Tel No: 201 3604 Help Desk: 203 9076 E-mail: pmo-dpo@mail.gov.mu Website: http://dataprotection.gov.mu
More information(Non-legislative acts) DECISIONS
4.12.2010 Official Journal of the European Union L 319/1 II (Non-legislative acts) DECISIONS COMMISSION DECISION of 9 November 2010 on modules for the procedures for assessment of conformity, suitability
More informationInternational Seminar on Personal Data Protection and Privacy Câmara Dos Deputados-BRAZIL
International Seminar on Personal Data Protection and Privacy Câmara Dos Deputados-BRAZIL Panel: Data protection in Finance, Health Services and Telecommunications Carlos López Blanco Telefónica S.A. 10.05.2017
More informationCOMMUNICATION FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT. pursuant to Article 294(6) of the Treaty on the Functioning of the European Union
EUROPEAN COMMISSION Brussels, 9.3.2017 COM(2017) 129 final 2012/0266 (COD) COMMUNICATION FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT pursuant to Article 294(6) of the Treaty on the Functioning of the
More informationRESEARCH PAPER. GDPR is a state of mind, not just a technology solution. June Sponsored by
RESEARCH PAPER GDPR is a state of mind, not just a technology solution June 2017 Sponsored by Contents Executive summary Introduction Keeping storage GDPR-friendly Identity and access management Personally
More informationDATA PROTECTION POLICY
DATA PROTECTION POLICY in connection with the processing of personal data regarding the development and testing of AI applications at AImotive Kft. TABLE OF CONTENTS 1. Introduction and the purpose and
More informationMinistry of Justice: Call for Evidence on EU Data Protection Proposals
Ministry of Justice: Call for Evidence on EU Data Protection Proposals Response by the Wellcome Trust KEY POINTS It is essential that Article 83 and associated derogations are maintained as the Regulation
More informationARE YOU DATA DRIVEN? WHAT S AROUND THE CORNER? PROTECTING DATA IN THE AUTONOMOUS AND CONNECTED VEHICLE INDUSTRY.
ARE YOU DATA DRIVEN? WHAT S AROUND THE CORNER? PROTECTING DATA IN THE AUTONOMOUS AND CONNECTED VEHICLE INDUSTRY. MAY 2016 CONTENTS METHODOLOGY AND OBJECTIVES 2 INTRODUCTION 4 SUMMARY 5 IS THE COMPLIANCE
More informationEUROPEAN COMMISSION Information Society and Media Directorate-General
EUROPEAN COMMISSION Information Society and Media Directorate-General The Director General Brussels, 22/12/2011 INFSO B1/RB Ares(2011) 1488963 ANNEX TO REPLY FROM INFORMATION SOCIETY AND MEDIA DIRECTORATE
More informationWhatever Happened to the. Fair Information Practices?
Whatever Happened to the Fair Information Practices? Beth Givens Director Privacy Rights Clearinghouse Privacy Symposium August 22, 2007 Cambridge, MA Topics Definition and origins of FIPs Overview of
More informationIntegrating Fundamental Values into Information Flows in Sustainability Decision-Making
Integrating Fundamental Values into Information Flows in Sustainability Decision-Making Rónán Kennedy, School of Law, National University of Ireland Galway ronan.m.kennedy@nuigalway.ie Presentation for
More informationPrecious Metal Articles Act
Issuer: Riigikogu Type: act In force from: 01.07.2014 In force until: mitte jõustunud Translation published: 07.04.2014 Amended by the following acts Passed 22.01.2003 RT I 2003, 15, 85 Entered into force
More informationPrivacy Management in Smart Cities
Privacy Management in Smart Cities Antonio Kung 26/04/2017 Data management and citizens privacy in smart cities open governance 1 Introduction Speaker Antonio Kung, Trialog (www.trialog.com,fr) Engineering
More informationSupplemental end user software license agreement terms
Terms of Service Docusign, Inc. Supplemental end user software license agreement terms These Supplemental Terms and Conditions (the "Terms") govern your ("Customer") use of the DocuSign Subscription Service,
More information(Non-legislative acts) REGULATIONS
19.11.2013 Official Journal of the European Union L 309/1 II (Non-legislative acts) REGULATIONS COMMISSION DELEGATED REGULATION (EU) No 1159/2013 of 12 July 2013 supplementing Regulation (EU) No 911/2010
More informationThe Revised EU Block Exemption Regulation for Research and Development Agreements
The Revised EU Block Exemption Regulation for Research and Development Agreements GCLC Conference, 16 February 2011 Axel Gutermuth Arnold & Porter LLP 1 Overview Article 1 (definitions): significantly
More informationThis Privacy Policy describes the types of personal information SF Express Co., Ltd. and
Effective Date: 2017/05/10 Updated date: 2017/05/25 This Privacy Policy describes the types of personal information SF Express Co., Ltd. and its affiliates (collectively as "SF") collect about consumers
More informationCommunication, Dissemination and Exploitation of results Mirela Atanasiu Head of Unit
Communication, Dissemination and Exploitation of results Mirela Atanasiu Head of Unit 26/01/2018 FCH 2 JU Grant Agreement Enforcement of communication and dissemination activities! The beneficiaries must
More informationLegislative and Regulatory Update. Diane Bowers, CASRO President CASRO Data Collection Conference November 19, 2009
Legislative and Regulatory Update Diane Bowers, CASRO President CASRO Data Collection Conference November 19, 2009 2009 Pharma market research state and Federal Massachusetts Vermont Minnesota Proposed
More informationPan-Canadian Trust Framework Overview
Pan-Canadian Trust Framework Overview A collaborative approach to developing a Pan- Canadian Trust Framework Authors: DIACC Trust Framework Expert Committee August 2016 Abstract: The purpose of this document
More informationYOUNG PERSONS PRIVACY NOTICE
YOUNG PERSONS PRIVACY NOTICE This is where we explain how we look after your personal data. By personal data we mean information we have about you, like your name, age or other details. We take your privacy
More informationJustice Select Committee: Inquiry on EU Data Protection Framework Proposals
Justice Select Committee: Inquiry on EU Data Protection Framework Proposals Response by the Wellcome Trust KEY POINTS The Government must make the protection of research one of their priorities in negotiations
More informationPrivacy Impact Assessment on use of CCTV
Appendix 2 Privacy Impact Assessment on use of CCTV CCTV is currently in the majority of the Council s leisure facilities, however this needs to be extended to areas not currently covered by CCTV. Background
More informationPRIVACY IMPACT ASSESSMENT
PRIVACY IMPACT ASSESSMENT PRIVACY IMPACT ASSESSMENT The template below is designed to assist you in carrying out a privacy impact assessment (PIA). Privacy Impact Assessment screening questions These questions
More informationData Protection and Ethics in Healthcare
Data Protection and Ethics in Healthcare Harald Zwingelberg ULD June 14 th, 2017 at Brocher Foundation, Geneva Organized by: with input by: Overview Goal: Protection of people Specific legal setting for
More informationAbout the Office of the Australian Information Commissioner
Australian Government Office of the Australian Information Commissioner www.oaic.gov.au GPO Box 5218 Sydney NSW 2001 P +61 2 9284 9800 F +61 2 9284 9666 E enquiries@oaic.gov.au Enquiries 1300 363 992 TTY
More informationDeliverable D1.2. Legal /regulatory requirements analysis
REVEAL FP7-610928 REVEALing hidden concepts in Social Media Deliverable D1.2 Legal /regulatory requirements analysis Editor(s): Responsible Partner: Joyce Verhaert, Aleksandra Kuczerawy, Prof. Peggy Valcke
More information"Workshops on key economic issues regarding the. enforcement of IPR in the European Union"
Ref. Ares(2015)2133028-21/05/2015 Call for expression of interest: "Workshops on key economic issues regarding the enforcement of IPR in the European Union" Background With Directive 2004/48/EC on the
More informationHong Kong Personal Data Protection Regulatory Framework From Compliance to Accountability
Legal Week s Corporate Counsel Forum 2016 Renaissance Harbour View Hotel 23 June 2016 Hong Kong Personal Data Protection Regulatory Framework From Compliance to Accountability Stephen Kai-yi Wong Privacy
More informationTechAmerica Europe comments for DAPIX on Pseudonymous Data and Profiling as per 19/12/2013 paper on Specific Issues of Chapters I-IV
Tech EUROPE TechAmerica Europe comments for DAPIX on Pseudonymous Data and Profiling as per 19/12/2013 paper on Specific Issues of Chapters I-IV Brussels, 14 January 2014 TechAmerica Europe represents
More information2018 / Photography & Video Bell Lane Primary School & Children s Centre
2018 / 2019 Photography & Video Use @ Bell Lane Primary School & Children s Centre Bell Lane Primary School & Children s Centre Responsible: Headteacher & Governing Body Last reviewed: Summer 2018 Review
More informationOur position. ICDPPC declaration on ethics and data protection in artificial intelligence
ICDPPC declaration on ethics and data protection in artificial intelligence AmCham EU speaks for American companies committed to Europe on trade, investment and competitiveness issues. It aims to ensure
More informationIN VITRO DIAGNOSTICS: CAPITA EXOTICA
IN VITRO DIAGNOSTICS: CAPITA EXOTICA Axon IVD seminar 12 September 2012 Erik Vollebregt www.axonadvocaten.nl orphan subjects that will soon develop to full-blown issues Stand alone software Data protection
More informationICC POSITION ON LEGITIMATE INTERESTS
ICC POSITION ON LEGITIMATE INTERESTS POLICY STATEMENT Prepared by the ICC Commission on the Digital Economy Summary and highlights This statement outlines the International Chamber of Commerce s (ICC)
More informationCalifornia State University, Northridge Policy Statement on Inventions and Patents
Approved by Research and Grants Committee April 20, 2001 Recommended for Adoption by Faculty Senate Executive Committee May 17, 2001 Revised to incorporate friendly amendments from Faculty Senate, September
More informationPrivacy Policy. Catalyst.Net Limited. Version 1.0
Privacy Policy Catalyst.Net Limited Version 1.0 November 2017 1 Scope 1.1. This Privacy Policy describes how Catalyst collects, uses, discloses, stores and gives access to Personal Information in accordance
More informationNOTIFICATION FOR PRIOR CHECKING INFORMATION TO BE GIVEN(2)
To be filled out in the EDPS' office REGISTER NUMBER: 322 NOTIFICATION FOR PRIOR CHECKING Date of submission: 10/01/2008 Case number: 2008-020 Institution: European Commission Legal basis: article 27-5
More informationPersonal Research Data. 25 Sept 2018 Solveig Fossum-Raunehaug (Research Support Office)
Personal Research Data 25 Sept 2018 Solveig Fossum-Raunehaug (Research Support Office) Tittel på presentasjon Norges miljø- og biovitenskapelige universitet 1 Personal Data Short definition: Personal data
More informationThe Corporation of the City of Nelson Office of the Finance and Purchasing Manager Telephone : (250) Fax : (250)
The Office of the Finance and Purchasing Manager Telephone : (250) 352-8204 Fax : (250) 352-6594 REQUEST FOR PREQUALIFICATIONS RADIO COMMUNICATIONS INFRASTRUCTURE UPGRADE CONTRACTOR SERVICES 2018-PRQ-01
More informationPRIVACY ANALYTICS WHITE PAPER
PRIVACY ANALYTICS WHITE PAPER European Legal Requirements for Use of Anonymized Health Data for Research Purposes by a Data Controller with Access to the Original (Identified) Data Sets Mike Hintze Khaled
More informationB) Issues to be Prioritised within the Proposed Global Strategy and Plan of Action:
INTERGOVERNMENTAL WORKING GROUP ON PUBLIC HEALTH, INNOVATION AND INTELLECTUAL PROPERTY EGA Submission to Section 1 Draft Global Strategy and Plan of Action The European Generic Medicines Association is
More informationMiriam de Angelis H2020 National Contact Point for Smart green and integrated transport & Climate action, environment, resource efficiency and raw
Miriam de Angelis H2020 National Contact Point for Smart green and integrated transport & Climate action, environment, resource efficiency and raw materials Agenda 1. Horizon 2020 structure 2. Rules for
More informationSeminar on Consultation on. Review of the Personal Data (Privacy) Ordinance. Why the review is being conducted and what this means to you
Seminar on Consultation on Review of the Personal Data (Privacy) Ordinance Why the review is being conducted and what this means to you On 28 August 2009, the Government released the Consultation Document
More informationA Pattern Catalog for GDPR Compliant Data Protection
A Pattern Catalog for GDPR Compliant Data Protection Dominik Huth, 22.11.2017, PoEM Doctoral Consortium Chair of Software Engineering for Business Information Systems (sebis) Faculty of Informatics Technische
More informationComments of the ELECTRONIC PRIVACY INFORMATION CENTER
Comments of the ELECTRONIC PRIVACY INFORMATION CENTER INFORMATION COMMISSIONER S OFFICE Consultation on Data Protection Impact Assessments (DPIAs) Guidance April 12, 2018 By notice published on March 22,
More information