Cookies have been at the center of data protection discussions for a long time, but recently the focus on the implementation of cookies has increased significantly. This blog post provides some insight into the most recent changes with regard to data protection authorities’ opinion on the implementation of cookie banners since the European Data Protection Board’s Cookie Banner Taskforce report.
Over the last three years, the Attorney-General’s Department has conducted a Review of the Privacy Act 1988 (Cth). On 28 September, the Government Response to the Privacy Act Review Report was published. This Government Response comes eight months after the Attorney-General’s Department published the Privacy Act Review Report 2022, a 320-page document outlining 116 recommendations and proposals resulting from extensive
On July 10, 2023, the European Commission (EC) adopted an Adequacy Decision regarding the EU-U.S. Data Privacy Framework (DPF). The decision taken by the EC regarding the EU-U.S. DPF enables organisations to certify their compliance with the EU-U.S. DPF, simplifying the process of transferring personal data from the EU to the U.S. The EU-U.S. DPF represents a significant step in
The double-edged sword of AI in cybersecurity – Highlights from the ENISA AI Cybersecurity Conference’
ENISA AI Cybersecurity Conference took place on 7th June, and here are the key highlights: AI is a double-edged sword when it comes to Cyber Security as it enables better and more advanced prevention against cyberattacks but at the same time enables cyber criminals to advance their attack methods and vectors. Generative AI by Huub Janssen (Rijksinspectie Digitale Infrastructuur) Cyber
As a data protection professional, you will often find yourself being part of large contractual negotiations, where you will be responsible for data processing agreement. Therefore, please find below a few tips on how to prepare for a (re-) negotiation of data processing agreements to achieve the best possible outcome of these. First of all, know the party on the
Bringing your privacy and security program to life involve turning the principles and activities outlined in the framework into concrete actions and processes that can be implemented in practice within your organisation. This typically involves defining clear roles and responsibilities, establishing clear lines of communication and decision-making, and setting up systems and processes for monitoring and ultimately enforcing compliance with
Introduction The Kingdom of Saudia Arabia new has adopted new Personal Data Protection Law (PDPL) to regulate personal data processing and prevent personal data abuse in line with the goals of the Kingdom’s Vision 2030 to develop a digital infrastructure and support innovation to grow a digital economy. PDPL has many similarities with various national and international data protection regulatory