Category: Privacy

The European Data Protection Board (EDPB) has published the draft (“public consultation version”) of the “Guidelines 1/2018 on certification and identifying certification criteria in accordance with Articles 42 and 43 of the Regulation 2016/679“: GDPR Guidelines

We are still far from having the certification criteria with regard to the GDPR. These are the criteria for evaluating the certification criteria.

In short, they are meta-criteria.

The “Privacy Sweep 2018” is an international survey dedicated to the accountability concept introduced in Europe also by the GDPR.
The survey examined the measures that the Data Controller or Processor have taken to guarantee and demonstrate compliance with data protection standards and regulations.
The Italian Guarantor has published a summary of the results (Italian article): Sweep 2018

Regions and Autonomous Districts were selected in Italy, as well as their respective subsidiaries.

The results are not particularly surprising and provide an indication of the points considered most important by the Guarantors authorities.