2018年12月11日 · They provide expert advice on data protection issues and handle complaints lodged against violations of the GDPR and the relevant national laws. In 2023, the Commission proposed a new Regulation on GDPR procedural rules, which aims to streamline cooperation between DPAs when enforcing the GDPR in cross-border cases. It supplements the GDPR in …

2024年7月25日 · Data protection is a fundamental right under EU law. EU data protection legislation is comprised of the General Data Protection Directive (GDPR), the Law Enforcement Directive (LED), and the Data Protection Regulation for EU institutions, bodies, offices and agencies (EUDPR).

2020年6月24日 · Communication from the Commission to the European Parliament and the Council - Stronger protection, new opportunities - Commission guidance on the direct application of the General Data Protection Regulation as of 25 May 2018

The GDPR set up an innovative governance system that aims to ensure harmonised interpretation, application and enforcement of data protection rules. It relies on independent national data protection authorities and the European Data Protection Board, composed of the representatives of the national data protection authorities of the EU/EEA ...

The GDPR applies strict rules for processing data based on consent. The purpose of these rules is to ensure that the individual understands what he or she is consenting to . Consent must be freely given , specific , informed and unambiguous.

Principles of the GDPR For how long can data be kept and is it necessary to update it? Rules on the length of time personal data can be stored and whether it needs to be updated under the EU’s data protection rules.

How can I demonstrate that my organisation is compliant with the GDPR? What does data protection ‘by design’ and ‘by default’ mean? What is a data breach and what do we have to do in case of a data breach? What rules apply if my organisation transfers data outside the EU? When is a Data Protection Impact Assessment (DPIA) required?

The General Data Protection Regulation (GDPR) gives individuals the right to ask for their data to be deleted and organisations do have an obligation to do so, except in the following cases: the personal data your company/organisation holds is needed to exercise the right of freedom of expression; there is a legal obligation to keep that data;

The type and amount of personal data a company/organisation may process depends on the reason for processing it (legal reason used) and the intended use.

Under specific circumstances listed in Articles 13(4) and 14(5) of the GDPR your company/organisation may be exempted from the obligation to inform the individual. Please check whether that exemption applies to your company/organisation.