IAPP tool for members to look up GDPR-related references
Free mobile app scanning services
More free mobile application scanning services
Transport for London’s Data Protection Impact Assessment and Privacy Notice for Wifi Tracking
Very interesting , also as it’s public and both, the Data Protection Impact Assessment and the Privacy Notice complement each other.
https://tfl.gov.uk/corporate/privacy-and-cookies/wi-fi-data-collection
State of the art – Guidelines by ENISA and TeleTrusT
ENISA and TeleTrusT – IT Security Association Germany have published their guidelines in English.
“The document published on the “state of the art” in IT security provides concrete advice and recommendations for action. These guidelines are intended to provide companies, providers (manufacturers, service providers) alike with assistance in determining the “state of the art” within the meaning of the IT security legislation. The document can serve as a reference for contractual agreements, procurement procedures or the classification of security measures implemented. They are not a replacement for technical, organisational or legal advice or assessment in individual cases. “
https://www.enisa.europa.eu/news/enisa-news/what-is-state-of-the-art-in-it-security
Handbook on European data protection law 2018 edition
ICO Legitimate Interest Assessment
Balancing test guidance by the UK DPA:
https://ico.org.uk/media/2258435/gdpr-guidance-legitimate-interests-sample-lia-template.docx
EDPS opinion on Social Media Monitoring
EDPS Prior Checking Opinion “Data processing for social media monitoring” at the European Central Bank (ECB)
Case 2017-1052
(Happened to be in the January 2019 EDPS newsletter, but opinion is from March 2018)
Opinion 3/2019 concerning the Questions and Answers on the interplay between the Clinical Trials Regulation (CTR) and the General Data Protection regulation (GDPR) (art. 70.1.b))
https://edpb.europa.eu/sites/edpb/files/files/file1/edpb_opinionctrq_a_final_en.pdf
Remaining questions for me:
Will Ethical Review Board adopt this view?
Final set of DG SANTE Questions and Answers?
Will this be reflected / be overruled by national law (Art 9 (4))?
Dutch DPA: SELECTION FROM DPA INVESTIGATION NIKE+ RUNNING APP
Bavaria DPA Dashboard on inspections (planned, ongoing, completed)
incl. completed online inspection of 172 wordpress web sites planned, e.g. inspections around data deletion in SAP, questionnaires, detailed expectations on controls, ..