PrivacySpec First impression of your company and your team. A possible applicant sees the ad for vacant position. This is how proper GDPR actions can streamline the whole process, from submission of CV to selection, background checks and making an offer and signing the contract. Understanding GDPR and data protection basics Experienced recruitment specialists consider privacy … Read more
Advisory and consultations services are tailored to help professionals and subject matter experts to make sure their projects are in compliance with data protection requirements. How do we engage our clients? As a principle, clients have access to consultations in their own environments, whether it be Teams, Slack or other solutions. Why to use external … Read more
Free to use reminder to share data securely, in accordance to privacy regulation and prevent incidents.
Andmekaitse kokkupuude muude valdkondadega Kui jätta kõrvale kitsalt andmekaitsealased projektid ja ülesanded, võib andmekaitsespetsialisti kaasamine anda häid tulemusi ka mitmes muus valdkonnas, mis on tihti oma andmekaitsega ühel või teisel viisil seotud. Isegi kui alati ei ole küsimus otseselt andmekaitses, siis praktikas pöördutakse nende valdkondadega seotud projektides sageli andmekaitsespetsialisti poole lihtsalt ka sel põhjusel, et … Read more
Andmekaitse üldmäärus (GDPR) ja andmekaitse seadused Kui praktikas viidatakse andmekaitse seadusele, siis võidakse selle all mõelda nii andmekaitse üldmäärust (GDPR), aga ka teisi õigusakte, mis ühel või teisel viisil andmekaitsega puutumust omavad. Tavaliselt pannakse omavahelistes lepingutes kirja, et teine poole (olgu ta vastutava või volitatud andmetöötleja rollis) peab järgima andmekaitse seadusi. Miks jätta andmekaitse seaduste … Read more
Popular services relating to data privacy Outsource vs in-house? Outsourcing | contractor In-house | employee Specific expertise, quick time to action High level know-it-all, needs time to gain insights Priority service Compete with other internal needs for attention and time Market overview of similar challenges After a while, understands business context Flexible start, pausing and … Read more
Hey, privacy spec! In this post, we will go over some basics about incident management. While we focus on privacy related incidents, general concepts and techniques can be applied to all sorts of management of time critical business situations. First, what is an incident? Narrowly speaking, the GDPR (and other privacy regulations alike) typically consider … Read more
Welcome, spec! In this post we want to set the data protection compliance groundwork applicable for all organizations. To meet the requirements of data protection regulation, namely the use of organizational measures, the following policies should be implemented. Based on 80/20 Pareto’s principle, these policies can cover most of the compliance requirements. Number #1 – … Read more
Privacy specs often talk about ‘pseudonymisation’. On level 1, people focus on its definition and what sets it apart from ‘anonymous’ data. Level 2 specs think of ways to implement the concept of pseudonymous personal data. In this article we’ll zoom out and discuss whether using a pseudonymous identity should be a data subject’s choice … Read more
As a core data privacy principle, giving information about what will be done with personal information is a common requirement in the data privacy realm. However, the exact requirements how to notify how personal data is used, is a bit differently in each jurisdiction (US, Australia, EU etc). Even the rights people have are different … Read more