Blog Privacy
Privacy management with ISO 27701
Accountability is a central principle in the General Data Protection Regulation (GDPR). This data protection principle creates the obligation to be able to demonstrate compliance. Simply doing your best to comply isn’t enough, but ‘appropriate technical and organizational measures’ have to be taken. Some form a privacy management system has to be in place to demonstrate…
Jelle Hoekstra
Cookies: the yes, the no, and the maybe
They are impossible to escape these days: cookies. Sometimes accompanied by a impenetrable cookie wall, a large banner, a small information bar, or nothing at all. Cookies allow certain website features, traffic analysis, and marketing. What is and is not allowed is not always clear, which many websites use to their advantage. In this article…
Joost Krapels
Decision time: Brexit options for EU Institutions
The European Data Protection Supervisor, or EDPS for short, supervises the compliance of EU Institutions and bodies to the GDPR. For this reason, most of the EDPS’ publications are not that interesting for most private parties. Lately, however, the EDPS published a statement that, given the current chaos surrounding Brexit is an interesting and perhaps…
Joost Krapels
ICT Institute training overview 2019
For 2019 we have fixed the following dates: AVG/GDPR training (one day, in Dutch language) is planned on 18 January, 20 March, 11 September, 18 October and 29 November. ISO 27001 Introduction training will be on 14-15 May. The course is in English, with a Dutch trainer present also. More information on the ISO courses…
Floris van den Broek
GDPR Data Protection Impact Assessment – free template
Under the new General Data Protection Regulation, it is mandatory to perform a DPIA in certain circumstances. This is an assessment in which you determine the impact of a personal data processing activity before commencing with it. We have created a DPIA template to aid in this compulsory review, which includes all mandatory elements and…
Joost Krapels