Showing Posts In "Europe" Category

EU DPAs Receive Thousands of Complaints Under the GDPR

In late October, European Digital Rights (EDRi) published statistics collected from eight European Union (EU) Member States that indicate that the entry of the General Data Protection Regulation has resulted in thousands of complaints from EU individuals. The United Kingdom’s DPA, the United Kingdom Information Commissioner’s Office (ICO), topped the list of complaints received at […]

EU Approves Regulation Prohibiting National Data Storage Requirements

European Union (EU) institutions recently reached a political agreement on a regulation that would prohibit requirements for national data storage. The effort, which is intended to encourage the free flow of non-personal data in Europe, requires that EU states communicate to the European Commission any remaining or planned data localisation restrictions. Public authorities still will […]

EU and U.S. Second Annual Review of Privacy Shield

The first day of a review of the Privacy Shield, a framework that regulates and facilitates the exchange of personal data across the Atlantic, focused on the commercial aspects of the regulation in relation to its enforcement and oversight. The second day included developments concerning the collection of personal data by United States authorities for […]

Top Thoughts for GDPR Third-Party Management

Not only does the General Data Protection Regulation (GDPR) affect compliance for global organizations, the data protection system also will extend to third-party vendors. Some organizations could have hundreds to thousands of relevant third-party vendors and, under GDPR guidelines, will assume the responsibility of ensuring each has an understanding of the different roles defined in […]

Unravelling the GDPR ‘Accountability’ Principle

The General Data Protection Regulation (GDPR) has transformed the theory of accountability from a basic data protection principle to a systematic and proactive approach to personal data collection and handling processes. Factors that constitute the risky behavior that the GDPR seeks to protect include those that may give rise to discrimination, identity theft or fraud; […]

Workplace Drug Testing Guideline

The International Edge for Leaders in Alcohol and Drug Testing iDATIA works hard to ensure that the international industry professionals concerned with achieving and promoting the highest testing integrityhave the proper resources to do so. The association provides guidance on approaching drug-and alcohol-free workplace programs; dealing with positive test results; what drugs to test for; […]

European Data Protection Supervisor Publishes Priorities for 2017

The European Data Protection Supervisor (EDPS) recently published its Priorities for 2017. The EDPS will set its focus on: New legal framework; The protection of confidentiality and privacy in electronic communications; Contributions to a Security Union and Stronger Borders based on respect for fundamental rights; And initiatives related to the European Commission’s Work Programme for […]


On May 25, 2018, the EU General Data Protection Regulation (GDPR) will go into effect, requiring companies that process personally identifiable information of EU residents to comply with a significant number of enhanced data-protection requirements. One of these requirements is an individual’s “right to explanation” of an algorithmic decision made about him or her by […]


In order to ensure businesses are compliant with the Data Protection Act, the Information Commissioner’s Office recently published a guide for small businesses on how to keep their IT systems safe and secure. The ICO offers 10 steps, including assessing the threats and risks to the business; getting in line with Cyber Essentials; securing data […]

WP29 Releases Guidance on DPOs, Data Portability, One-Stop Shop

The European Union’s (EU) Article Working Party recently revealed a number of General Data Protection Regulation (GDPR) application guidance documents. The mandatory Data Protection Officer (DPO) role can be confusing to organizations who question the terms “core activities” and “large scale.” Guidance recommends those in doubt should err on the side of appointing a DPO. […]

Subscribe to our Publications