We are privacy compliant without cookie banners. Further information in the privacy policy.
Compliance Blog
-
Deletion obligations: Why deleting data is just as important as collecting it
In today’s digital landscape, data is seen as the new gold. Companies and individuals are collecting, analyzing and using data to make informed decisions and develop innovative solutions. But while data collection takes center stage, it is often overlooked that deleting data that is no longer needed is just as important. more »
-
NIS 2: What’s important for companies in 2024
Is your company affected by NIS 2? Overview: NIS 2 In this article, we clarify the most significant points for companies in 2024 on the subject of NIS 2. Weaknesses of NIS 1 The digitalization and networking of society have expanded the threat scenario. At the same time, many companies in the EU lack a… more »
-
Tracking Tools – Accountability
Accountability (pursuant to Article 5(2) of the GDPR) when using tracking tools. In its activity report for 2019, the BayLDA once again discussed the issue of accountability in connection with the use of tracking tools. According to the BayLDA, the background to this is that many companies are often not sufficiently aware of their own… more »
-
Video identification
In Chapter 10.2 “Video identification and ID copies” on page 67 of the activity report, the BayLDA points out that remote identification of persons can be carried out by means of online transmission. Remote identification – a good alternative? The PostIdent procedure and also other identification procedures with a media break have the disadvantage of… more »
-
WhatsApp
Chapter 8.6. of the BayLDA activity report deals with the data protection issues regarding the use of WhatsApp in the professional environment. A convenient and alternativeless solution? The desire for simple and, above all, faster handling of communication is very great, especially among companies. It is not advisable to continue using WhatsApp within the company,… more »
-
Contact forms
After the entry into force of the GDPR in May last year, there was uncertainty among some website operators regarding the integration of contact forms on the website. In principle, according to BayLDA chapter 8.4 page 55 ff, there is nothing to be said against integrating a contact form on the website if the following… more »
-
Cookie banner
In its activity report in chapter 8.3 “Cookie banners” on page 55, the BayLDA points out that many cookie banners often do not provide the customer with all the necessary information so that effective consent can be obtained. To obtain effective consent, the following requirements should be met: When the website is opened, a banner… more »
-
BayLDA conducts data protection audits – Art 5 para 2 DSGVO
Data protection audits by the BayLDA Since 06.11.2018, 15 small (from 100 employees) and medium-sized (from 500 employees) companies have been audited by the BayLDA on the basis of Article 5 (2) DSGVO. Here, the so-called “accountability” is specified, which means that the company’s compliance with the legal requirements must be presented to the supervisory… more »
-
Controller and Processor – Articles 24 to 43 GDPR – Facebook Hack
Controller and Processor Articles 24 to 43 GDPR – Facebook Hack In previous blog posts, we have already addressed, for example, Article 32 of the GDPR on technical and organizational measures. Today, we would like to dedicate the larger context to chapter five controller and processor, which is regulated in articles 24 to 43 of… more »
-
Articles 12 to 23 GDPR – Rights of the data subject
The rights of the data subject are found in Chapter 3 of the GDPR, Articles 12-23. Attached is the list at the end of the article. One of the imperatives of the GDPR is the obligation of transparency. Consequently, the data subject(s) must be informed at all times in the data processing process about what… more »