|
- Legal framework of EU data protection - European Commission
GDPR Procedural Regulation Following, the proposal from the Commission, the Council and European Parliament agreed in May 2025 to lay down new procedural rules relating to the enforcement of the GDPR The new law aims to deliver faster and more effective enforcement of the GDPR in large, cross-border cases
- Data protection - European Commission
Extending the derogation from record-keeping obligation under Article 30(5) of the GDPR to SMCs and organisations under 750 employees Requiring SMEs, SMCs and organisations with fewer than 750 employees to maintain records only when their processing of personal data can be considered “high risk” under the GDPR
- Publications on the General Data Protection Regulation (GDPR)
Communication from the Commission to the European Parliament and the Council - Stronger protection, new opportunities - Commission guidance on the direct application of the General Data Protection Regulation as of 25 May 2018
- Data protection explained - European Commission
The GDPR does not apply to data processed by an individual for purely personal reasons or for activities carried out in one's home, if there is no connection to a professional or commercial activity When an individual uses personal data outside the personal sphere, for socio-cultural or financial activities, for example, then the data
- Principles of the GDPR - European Commission
Principles of the GDPR For how long can data be kept and is it necessary to update it? Rules on the length of time personal data can be stored and whether it needs to be updated under the EU’s data protection rules
- Who the General Data Protection Law applies to - European Commission
The GDPR applies to: a company or entity which processes personal data as part of the activities of one of its branches established in the EU, regardless of where the data is processed; or; a company established outside the EU and is offering goods services (paid or for free) or is monitoring the behaviour of individuals in the EU
- GDPR – the fabric of a success story - European Commission
The GDPR set up an innovative governance system that aims to ensure harmonised interpretation, application and enforcement of data protection rules It relies on independent national data protection authorities and the European Data Protection Board, composed of the representatives of the national data protection authorities of the EU EEA
- How can I demonstrate that my organisation is compliant with the GDPR . . .
The GDPR provides businesses organisations with a set of tools to help demonstrate accountability, some of which have to be mandatorily put in place For example, in specific cases the establishment of a DPO or conducting data protection impact assessments (DPIA) may be mandatory
|
|
|