Privacy by Design
What does ‘data protection by design and by default’ mean under EU Data Protection Law?
Key points:European Data Protection Law requires appropriate technical and organizational measures to implement the data protection principles and safeguard individual rights. This is called ‘data protection by design and by default’.In essence, this means controllers must integrate or ‘bake in’ data protection into processing activities and business practices from the design stage and throughout the…
Read More »GDPR requires privacy by design, but what is it and how can marketers comply?
Privacy by design is a fairly old concept in systems engineering and its general meaning is pretty obvious. Wikipedia describes it as “not about data protection” but rather “designing so data doesn’t need protection,” with the “root principle based on enabling service without data control transfer from the citizen to the…
Read More »Implementing Privacy By Design
The General Data Protection Regulation (GDPR) introduced many changes to the way businesses and public bodies think about privacy. One of those ways is in the decision to encode the concept of “Privacy by Design” (PbD) into law through Article 25. Fortunately, unlike much of the GDPR, the concept of Privacy…
Read More »Privacy by Design and GDPR: Putting Policy into Practice
The GDPR requires organisations to implement appropriate technical and organisational measures to implement data protection principles and safeguard individual rights. While data protection by design and by default (or ‘privacy by design’) is not a new concept, the GDPR makes it a legal requirement, and thus practical guidance is needed…
Read More »
Schrems II Judgment Day
The Court of Justice of the European Union (“CJEU“) issued its judgment today in …
