Content available in English.

As technology is continually tightening its grip upon our day-to-day lives, a multitude of issues such as data breaches, digital surveillance and the evasion of privacy have come to the fore. Since unplugging from the online world is not a feasible option in today’s era of digital dependence, privacy advocates posit that internet users must take appropriate measures to protect their personal data at an individual level so they can navigate the web safely and continue to use their digital devices with ease. 

Though obviously no-one can predict the future, it is great fun thinking of what will have happened to privacy regulation in five years' time. The EU GDPR has been an agenda-setting legal instrument but its effects are still only in their infancy.

This blogpost series started with tips on how to prepare for a GDPR compliance program. How to execute such a program within your organisation was explained in the second blog post. In this final blogpost, we will take you through the last steps of establishing a GDPR compliance program within your organisation. All of these steps are about communication. 

The European Data Protection Board (the “EDPB”) recently published an overview on GDPR’s implementation since its enforcement last May, and the roles of national supervisory authorities in this regard. We have summarised and examined some of the items we consider key to the success of GDPR, in this blogpost.

National Implementation of the GDPR

As of today, almost all Member States have implemented and enforced the GDPR in their national laws. The only remaining exceptions are Czech Republic, Greece, Slovenia and Portugal. 

In the previous blogpost, we talked about the preparatory phase of creating a GDPR compliance program for your organisation. Now it is time for the next step: the execution of the plan. In this blogpost, we will give you tips about how you can roll out a successful GDPR privacy compliance program within your organisation. 

Often the best way to tackle complicated matters is to make it fun. Because, the show must go on. Therefore, here are 8 essential tips to become and stay compliant with the GDPR if you don’t want to be the next one biting the dust. 

Rotterdam, February 18, 2019 - In the past three years, privacy software company PrivacyPerfect added many customers all over Europe and beyond. Today, the company announces the appointment of Sander Schoneveld as its new CEO. In this role, Sander will help to grow the business further across Europe in line with the existing growth strategy. Evert de Pender, who has been at the helm of the company since 2015, will remain on the company’s Board.

Before the enforcement of the GDPR in May 2018, not many organisations were aware of the GDPR. However, this regulation has affected businesses worldwide and has drastically changed the way in which organisations collect, store and use data. Since the GDPR has been in force for a while now, the urgency for an effective privacy compliance program is higher than ever. In this blogpost series, we will explain in detail how to create, to execute and to communicate a successful GDPR privacy compliance program within your organisation.

Impact assessments are essentially risk management tools, whether they are concerned with the environment, society, business, or personal data. In case of personal data, Article 35 of the GDPR requires controllers to conduct a data protection impact assessment (“DPIA”) prior to undertaking processing activities that are likely to pose high risk to the rights and freedoms of natural persons. This is essentially a holistic risk assessment taking into account the nature, scope, context and purposes of the processing. 

No matter what sector your business is in, how large or small an organisation you are, or whether your products and services are B2C or B2B, today, with increasing consumption occurring online, it is imperative that your online marketing strategy is relevant, up-to-date and effective.