When companies report outstanding debts to credit agencies such as Schufa, they should proceed very carefully: This is because if the main and ancillary claims cannot be clearly separated from each other, this may constitute unauthorized data transmission - and therefore a breach of the GDPR. This was decided by the Schleswig-Holstein Higher Regional Court.
In November 2024, three GDPR fines worth millions were imposed on companies from Spain, Italy and Finland. In two cases, the data protection authorities criticized the fact that the principle of "privacy by design" had been implemented very inadequately in the data processing processes. What interesting insights the fines offer companies.
With Ailance RoPA, the DPO can easily create tasks (to-dos) and customize them to specific teams, roles or individual responsibilities. This flexibility ensures that each critical task is tracked and clearly assigned. Let us show you how to easily create a to-do.
With version 2.1 of the minimum standard (MST) for logging and detecting cyberattacks, the Federal Office for Information Security is presenting a central guideline for security requirements in the federal administration. Due to the increasing importance of cyber defense and legal requirements, companies can also derive key aspects from the MST.
The Data Protection Conference's (DSK) guidance on digital services (version 1.2, November 2024) provides a comprehensive overview of the legal requirements for providers of these services. We have summarized the most important points for you.
The introduction of the EU-US Data Privacy Framework (DPF) in 2023 is intended to create a new basis for secure data transfer. The European Data Protection Board (EDPB) has now dealt with the implementation of the adequacy decision for the USA and drawn an initial interim conclusion.
Christmas is just around the corner and the first Christmas markets have already opened their doors. This year, showmen are calling for special security measures, including video surveillance of their markets. Why blanket video surveillance at Christmas markets is not permitted without good reason.
With Ailance RoPA, you can manage your processing directory easily and efficiently. The compliance check for processing activities is a smart function that you won't want to do without after using it for the first time. We will briefly introduce you to this function.
The Federal Court of Justice (BGH) has made a leading decision in connection with a far-reaching data protection incident at Facebook: Even the mere loss of control over personal data can constitute non-material damage within the meaning of Art. 82 (1) GDPR. What consequences the ruling has.
You can also follow us on our social media channels:
Phone: +1 (954) 852-1633
Mail: info@2b-advice.com
English 
German 
Italian 
French