FREQUENTLY ASKED QUESTIONS
What is a data breach under GDPR? A data breach under the GDPR is defined as the unauthorised or accidental access, use, disclosure, alteration, or destruction of personal data...
FREQUENTLY ASKED QUESTIONS
How much can a company be fined for non-compliance with GDPR? Companies can be fined up to 4% of their annual global revenue or €20 million (whichever is greater) for non-compliance with GDPR...
eBOOK ● CHAPTER 21● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is GDPR and why is it important for organisations to comply? GDPR stands for General Data Protection Regulation and it's a regulation set by EU that regulates the handling and processing of personal data of EU citizens...
eBOOK ● CHAPTER 20● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is a supervisory authority? A supervisory authority is a government or regulatory body that is responsible for enforcing laws and regulations within a specific industry or sector...
eBOOK ● CHAPTER 18 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is a third-party data processor? A company or organisation that processes data on behalf of a data controller. They handle data processing tasks such as storage, hosting, and analysis...
eBOOK ● CHAPTER 17 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is an international data transfer? An international data transfer refers to the transfer of personal data from a company or organisation in one country to a recipient in another country...
eBOOK ● CHAPTER 16 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is a data breach? A data breach is a violation of the GDPR that results in the unauthorised access, disclosure, alteration, or destruction of personal data. This can include incidents such as hacking, loss or theft of data, or human error...
eBOOK ● CHAPTER 15 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is a Data Subject Access Request (DSAR)? A DSAR is a request made by an individual for access to the personal data that an organisation holds about them. The General Data Protection Regulation (GDPR) gives individuals the right to access their personal data...
eBOOK ● CHAPTER 14 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is a Privacy Notice/Policy? A Privacy Notice/Policy (PNP) is a document that provides information to individuals about how their personal data will be collected, used, and shared by an organisation...
eBOOK ● CHAPTER 13 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is a DPR? A DPR is an individual or organisation that has been designated by a controller or processor to represent them in relation to their obligations under the GDPR...
eBOOK ● CHAPTER 12 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is a Data Protection Officer (DPO)? A DPO is an individual responsible for monitoring compliance with data protection regulations, such as the General Data Protection Regulation (GDPR) in the European Union...
eBOOK ● CHAPTER 11 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is a DPIA? A DPIA is a process designed to help organisations identify and minimize the data protection risks of a project or new processing activity. It involves evaluating the potential impacts on individuals' privacy rights and freedoms...
eBOOK ● CHAPTER 10 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is data protection by design and by default? Data protection by design and by default refers to the principle that data protection considerations should be built into the development of products...
eBOOK ● CHAPTER 9 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is a legal basis for processing personal data? A legal basis refers to the specific laws, regulations, or conditions that allow for the collection, use, and storage of personal data...
eBOOK ● CHAPTER 8 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What are data subjects' rights? Data subjects' rights are the rights that individuals have with regard to their personal data, as set out in data protection laws and regulations such as the General Data Protection Regulation...
eBOOK ● CHAPTER 7 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is a data protection policy? A data protection policy is a set of guidelines and procedures that an organisation puts in place to protect the personal data of its employees, customers, and other stakeholders from unauthorised access, use, or disclosure...
eBOOK ● CHAPTER 6 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
Why is it important to assess your business's GDPR compliance? Assessing your business's GDPR compliance is important because it helps to ensure that your organisation is complying with the GDPR...
eBOOK ● CHAPTER 5 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
Upskilling your staff with the GDPR is important because it helps to ensure that your organisation is compliant with the GDPR and that your staff are aware of their responsibilities and obligations under the GDPR...
eBOOK ● CHAPTER 4 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What are the benefits of complying with the GDPR? Complying with the GDPR has a number of benefits for organisations, including...
eBOOK ● CHAPTER 3 ● KNOWLEDGE BANK
FREQUENTLY ASKED QUESTIONS
What is the GDPR? The GDPR is a comprehensive data protection law that came into effect on May 25, 2018. It replaces the 1995 EU Data Protection Directive and applies to all organisations that process the personal data of individuals in the European Union (EU), regardless of whether the processing takes place within the EU or not...
