GDPR Guide

DPO externe et Représentant RGPD dans l'UE Datadiem - External DPO and GDPR Representative in the EU Datadiem

Widen Scope

Expanded territorial scope Establishments in the EU Real exercise of activity more than Establishments’ legal…

Transfers of personal data

General derogations Explicit informed consent has been obtained, or Transfer is necessary (for performance of…

GDPR New Principles

Principles / personal data. Lawfulness, fairness and transparency. Purpose limitation. Data minimization. Accuracy. Storage limitation….

Massive fines & Penalties

Revenue based administrative fines Increased risk Sanctions imposed by SA are effective, proportionate and dissuasive….

Consent

Required if consent serve as legal justification. Shall be unambiguous or even explicit¦New. Proof of…

Accountability

Controller is responsible for and shall demonstrate compliance with the 6 principles related to personal…

Roadmap to compliance

Assess your readiness compliance. Define your project scope. Explore and understand your data. Perform a…

Enhanced rights for data subject

Transparency: Transparent, intelligible, easily accessible form, clear and plain language (child).Duty to facilitate exercise of…

Special Categories

Data processing is prohibited when relates to Racial or ethnic origin. Political opinions. Religious or…

Perform a detailed gap analysis

Areas concerned shall include. Transparency. Collection & Purpose Limitation. Consent: How does your organization seek,…

Data Breach Notification

Notification to supervisory authority by Controller¦New Mandatory only if breach is likely to result in…

Lawfulness

Processing is lawful if at least 1 legal justifications applies. Data subject has given consent…

Assess the risk

Mandatory security measures depend on risk level. Taking into account the state of the art,…

Remedies & liabilities

GDPR makes it easier for individuals to bring claims Right to Remedies Lodge a complaint…

Execute remediation plan

Implement actions following priorities. Keep particular attention to: Data protection frameworks.Data protection governance.Privacy by design…

Monitor

Monitor compliance Governance framework. Risk metrics. Processes. Support. Guidance. DPO. Training, awareness, audits. Regulation updates….