Category Archives: GDPR

Portability of the data: one of the rights introduced by the GDPR

Portability of the data: one of the rights The new General Data Protection Regulation (GDPR), other than data portability, confirms several rights of the data subject. Data subjects have the: Right to be informed; Right of access; Right to rectification; Right to restriction of processing; Right to erasure (right to be forgotten); Right to object; Rights related to automated individual decision-making, including profiling; Last but not least, Read more »

Privacy policy: what is its content according to the GDPR?

Privacy policy in the GDPR GDPR defines the content of the privacy policy that needs to be provided to the data subject in articles 13 and 14. These articles cover the following scenarios: “Information to be provided where personal data are collected from the data subject” “Information to be provided where personal data have not been obtained Read more »

Personal data: GDPR and data explanation

Personal data: what does GDPR say? In the first paragraph of the art. 9 of GDPR (General Data Protection Regulation) there is a definition of personal data. Attached to this definition, you can find the prohibition of processing such data: “Processing of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade Read more »

Regular and systematic monitoring: what does it mean?

Regular and systematic monitoring What does regular and systematic monitoring mean? GDPR does not provide a specif definition. However, Recital 24 considers the “monitoring of the behaviour of data subjects” including in this concept every form of online profiling (even for behavioral marketing purposes). Such definition, in any case, does not only include the internet: we must Read more »

GDPR Plugin: Swascan offers a free tool for Compliance

GDPR Plugin: Swascan for Compliance Swascan provides to their partners an innovative plugin. It is focused on the GDPR Compliance of WordPress and Woocommerce websites, you can download it at the following link: Swascan GDPR Plugin. Swascan GDPR plugin allows whoever installs it to face GDPR-related issues in terms of websites. Download Swascan GDPR Plugin Swascan GDPR plugin is now Read more »

CyberSecurity Services: Swascan supports companies

Cybersecurity service: Swascan proposition Security Management has become, over the past few years, an essential aspect to consider for companies. Organizations can not afford to underestimate the impacts of a bad Security Management: loss of reputation, stop of the normal activities of the company, fines,… In this regard, Swascan offers a various range of solutions useful to Read more »

GDPR Compliance: Swascan risk analysis

GDPR Compliance The introduction of the Data Protection regulation caused several changes for companies. These changes are measurable in terms of Technology, Organization, Policy, Staff and Control Systems. Which steps do companies need to follow, which activities do company need to carry out in order to be compliant? It is now available Swascan GDPR Compliance Read more »

DPIA or Data Protection Impact Analysis: what is it?

DPIA First thing first, what does the acronym DPIA stand for? DPIA indicates Data Protection Impact Analysis. What is it concretely? It is a procedure that describes a data processing and identifies its needs, its adequacy and its risks. All of this has a specific purpose: face these risks in a correct way. The DPIA concerns all Read more »

Data processing: risk for rights and freedoms

Risk for rights and freedoms What does the EU GDPR mean with risk for rights and freedoms? Recital 75 of the Regulation explains it: The risk to the rights and freedoms of natural persons, of varying likelihood and severity, may result from personal data processing which could lead to physical, material or non-material damage, in particular: Read more »

Records of processing activities

Records of processing activities: explanation The records of processing activities are a crucial tool for corporate compliance that the new law in terms of data privacy (GDPR General Data Protection Regulation) offers. This documentation is explained in the art. 30 of the EU GDPR: “Records of processing activities”. The first paragraph provides a clear explanation Read more »