In the European Union we have: Directives and Regulations. What is the difference between them?
An architect, leaving a building site, puts his laptop for a moment beside his car on the road, while answering his phone. When driving away he sees in the mirror his laptop being crushed by an enormous lorry driving over it. All his files on the design of the building and the calculations he worked on are lost. His only consolation is that those were the only files on the device.
In terms of the GDPR, what happened?
When is a Data Protection Impact Assessment (DPIA) under the General Data Protection Regulation (GDPR) mandatory?
A company CEO travels to a meeting in another city. He takes a notebook with information about the company’s new projects and acquisitions, which will be the subject of discussion at this meeting. These are the only data stored on the notebook.
The notebook accidentally falls into the hotel’s pool and all data is lost.
What happened, considering the General Data Protection Regulation (GDPR)?
One of the basic principles of the General Data Protection Regulation (GDPR) is subsidiarity.
What is subsidiarity to GDPR?
Someone regularly receives offers from a store where he purchased something five years ago. He wants the company to stop sending offers and to wipe his personal data.
Which aspect of the rights of a data subject in the General Data Protection Regulation (GDPR) requires the company to comply?
Personal data shall be adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed. Which data processing principle is described here?
To comply with the General Data Protection Regulation (GDPR) it is necessary to create a procedure for reporting data breaches to the Supervisory Authority.
As the controller is a public administration agency, which option is a requirement for this procedure?
Which of the alternatives describes one of the Supervisory Authority’s responsibilities?
The General Data Protection Regulation (GDPR) came into effect on May 25, 2018, what is the legal status of this regulation?
In the contract between the controller and processor for the processing of personal data, which of the options below represents the sole responsibility of the Controller?
According to the GDPR, for which situations should a Data Protection Impact Assessment (DPIA) be conducted?
What is the definition of privacy related to the General Data protection Regulation (GDPR)?
The controller responsible for the UK Child Sexual Abuse Investigation body reported a data breach to the
supervisory authority in the UK on 28 February 2019.
People who had registered their interest in participating in forums and debates for victims of child sexual abuse received an email that contained the email addresses of everyone else who had also registered.
Which category does this data breach fit into?