Impacts of the GDPR on local and regional Authorities
Immediate application of the GDPR without a transitional period There are many misconceptions about the GDPR, thinking that a transition period will be granted, that this law does not concern local authorities or even that small municipalities are not concerned. It is therefore important to...
Good Data Governance is an asset
Since 25 May, the CNPD in Luxembourg, as well as the CNIL in France and independent state entities in charge of privacy monitoring, have been able to verify the compliance of companies and sanction them. Unfortunately for many organizations, the GDPR project is far from...
Strategy of the national Data protection Commision (NPDC) for 2018
We provide a brief overview of the important elements of this strategy: Guidance publications and awareness-raising for companies and individuals; Enhancing the transparency of data controllers, subcontractors and the NCDP towards data subjects; Proactive and thematic controls relating to compliance with the...
What are the similarities between GDPR & ISO 27001?
The two standards have a lot in common, most of them related to information security. Here are the main ones: Confidentiality, availability and integrity of data. Article 5 of the GDPR defines the general principles for data processing, such as protection against unauthorised or...
LEGAL DESIGN” DEFENDED BY THE CNIL
The CNIL defends the idea of design, or "legal design", in the context of data protection. Legal design is the simplification and improvement of the understanding of the law to lay people (persons not resulting from a legal training) by choices made on the interface...