Danish DPA refers municipality to police for GDPR violation

Denmark’s data protection authority Datatilsynet is reporting the municipality of Lejre to the police for failing to provide an appropriate level of computer security. After the council reported a breach of personal data, Datatilsynet says it became aware the municipality’s children and young people department included information of a particularly sensitive and protective nature of […]

More than half of organisations subject to GDPR collect more data than the regulation permits, a study has found

A Data Risk and Security report released by the security software company Netwrix has revealed that companies are failing to follow GDPR and security best practices. The survey of just over a thousand respondents revealed that security professionals are often bypassing many of the six stages of the data lifecycle. While security issues are mitigated […]

South Korea hopeful on GDPR transfer exception

The South Korea-EU summit on 30 June is expected to discuss South Korea’s exemption from paying GDPR transfer fines. The exception would allow its businesses located within the EU to transfer data to South Korea without penalties. After failing to get the agreement in 2016 and 2018, South Korea has taken a number of steps […]

Does the GDPR not apply during the COVID-19 state of emergency?

In the last few months, we have seen organisations across Europe imposing various obligations on their employees, visitors and customers to fight against the spread of the COVID-19 virus. The underlying measures started with the completion of questionnaires on health conditions and have progressed to requiring temperature checks of people entering premises and installing thermal […]

Desired GDPR impact requires more collaboration

For over two years, GPDR has provided a global framework for how data protection can be accomplished, but it’s not without its challenges. These challenges are rooted in both expectation and within the legislative process itself. From the effective date for GDPR, we’ve seen inconsistency in how the directive has been applied, despite a desire […]

GDPR compliance and the cybersecurity of systems

On the second anniversary of GDPR, Steven Kenny, Industry Liaison – Architecture & Engineering at Axis Communications, reflects on the impact that the regulation has had on the cybersecurity of IoT devices in relation to physical security. For businesses everywhere, the enforcement of the General Data Protection Regulation (GDPR) in May 2018 meant that greater […]