Author: Vimal Mohan

The General Data Protection Regulation (GDPR) protects individual users’ data privacy across the European Union member states. As an organization in the process of becoming GDPR compliant or maintaining your compliance stature, your GDPR framework must be designed to protect these eight GDPR Data Subject Rights. What is a Data Subject? Data Subject refers to…

GDPR, with its 11 chapters and 99 Articles, aims to protect user data privacy across the European Union(EU). Unfortunately, across these 11 chapters and 99 articles, the makers of GDPR have used complex jargon that is not easy to understand.  In this article, we’ve listed and explained all the GDPR article 4 definitions of legal-speak…

The General Data Protection Regulation (GDPR) is one of the most stringent data protection laws in the world. Though this law aims to protect the privacy and security of the European Union (EU) citizens, its impact isn’t limited by geography.  If you are contemplating becoming GDPR compliant, we’ve curated a GDPR audit checklist for you…

The General Data Protection Regulation (GDPR) focuses on protecting the data privacy rights of the citizens of the European Union. Article 20’s Right to Data Portability focuses on one aspect of the rights and freedom an individual has under the GDPR law. Are you finding it challenging to differentiate Article 20’s service requests from the…

Article 28 of GDPR (General Data Protection Regulation) discusses the written contract between a controller and a processor (or a sub-processor). This contract legally allows processors to process personal data on behalf of the Controller. This contract is also known as a Data Processing Agreement (DPA). Here’s an example of a standard DPA and the…

Article 15 of the General Data Protection Regulation (GDPR) empowers the data subject to exercise their right to know the information their employers hold about them. Are your employees (current/former) asking you to produce the information you have about them? Should you consider oral requests, What’s the TAT for response time and what are the…

Does your organization fall under the purview of Article 30? Do you find it difficult to interpret the jargon? Are you still looking for a step-by-step guide to help you understand Article 30?  In this article, we have detailed everything you need to know about Article 30 to help with your compliance processes.  The General…

If your organization processes personal data, the General Data Protection Regulation (GDPR) requires you to present a security posture that can protect the data in your business environments from cyber-attacks. Article 32 of GDPR talks about setting up controls and policies to deploy this line of defence required to ensure data security. But while the…