Blog Privacy
GDPR and ethics requirements for scientific research with personal data
Scientific research frequently involves collecting and analysing personal data, which brings researchers into direct contact with the GDPR and ethical responsibilities. Yet many researchers struggle to understand GDPR requirements for scientific research, which rules apply and how to implement them in practice.
Pavlo Burda
Privacy statement generators: a comparison
All organizations processing personal data, even the ones without an in-house privacy expert, are required to disclose information on this processing. Most organizations do this through a privacy statement on their website. Several websites offer a free privacy statement generator, but do these actually produce valid privacy statements? In this article, we summarize the research…
Joost Krapels
GDPR template joint controllership agreement
When two companies process personal data together in an equal relationship, they must sign a join controllership agreement, We made a free template for such an agreement.
Sieuwert van Otterloo
How to use Standard Contractual Clauses
When you process personal data outside of the reach of the General Data Protection Regulation (GDPR), additional safeguards are required to ensure the same level of data protection as in Europe. One of the ways to do this, is by using a model contract approved by the European Commission: the so-called standard contractual clauses (SCCs)….
Jelle Hoekstra
Privacy management with ISO 27701
Accountability is a central principle in theĀ General Data Protection Regulation (GDPR). This data protection principle creates the obligation to be able to demonstrate compliance. Simply doing your best to comply isn’t enough, but ‘appropriate technical and organizational measures’ have to be taken. Some form a privacy management system has to be in place to demonstrate…
Jelle Hoekstra