Personal Data Breach: From Panic to Promise
Data breach can happen to any organisation. Thus, it is important to follow four phases of data breach management: 1) prevent, 2) prepare, 3) contain, 4) assess and notify. The most important is to concentrate on prevention and preparation.
Data Breaches -webinar 1.4.2021
Yleinen » Publications & News » Blogs » GDPR » Privacy
Data breaches -webinar focus on preventive measures you can take to avoid a data breach to realise, how to prepare for data breaches and what actions you need to take in the case of data breach. Event is free of charge, but please, remember to register in advance.
Data Privacy and Protection in the New U.S. Administration
Publications & News » Blogs » News
There are many expectations and demands for new U.S Administration also in data privacy and protection world. Read, what indications do we have about the new administration's potential steps on the data privacy and protection issues?
Compliance Documentation Demonstrates Accountability
Publications & News » Blogs » News » Privacy
Compliance documentation is the evidence you need to show that you are accountable regarding your responsibilities under data protection law and towards your customers. Download a chart of the Key Compliance Documentation, along with GDPR references.
Privaon conducted a DPIA to Koronavilkku
Publications & News » Blogs » Case Studies
Koronavilkku is a contact tracing app produced by the Finnish Institute for Health and Welfare (THL). Privaon conducted a Data Protection Impact Assessment to Koronavilkku.
The Data Protection Officer’s role & responsibilities -webinar 28.1.2020
Publications & News » Blogs » News
Welcome to our webinar, which concentrates on the Data Protection Officer's role and responsibilities. The event is free of charge, but please remember enrol in advance.
Data Protection Annual Plan -webinar 5.11.2020
Publications & News » GDPR » Privacy
Data Protection Annual Plan -webinar on 5th of November at 8:30-9:15. Welcome to learn, why and how to develop a Data Protection Annual Plan in practice.
Basics of Data Protection Impact Assessment (DPIA)
Organisations shall carry out a Data Protection Impact Assessment (DPIA) where a processing activity is likely to result in a high risk to the rights and freedoms of natural persons.
How to provide GDPR and data protection training for your staff?
When mere actions aren’t enough but proof for these actions is required as well, the need for thorough consideration of GDPR and data protection training becomes imminent. How to train an organisation about the GDPR and data protection and what to take into consideration?
Right to Data Portability Under the GDPR – Part 2: How to comply with the right and what to consider in practice?
The introduction of the right to data portability under the GDPR will have a significant impact on data controllers. But how should companies comply with this new regulation?
Right to Data Portability Under the GDPR – Part 1: What does the right cover and when does it apply?
Data portability will have an impact on all data controllers as it enhances competition between services by making it easier for individuals to switch between different providers, whilst also granting them access to more information than they previously had.
End User Consents Under the GDPR – Part 3: Guidelines for Users
Although the GDPR imposes new stricter rules on the use of end user consents, it is essential that also the end users themselves are active in data protection and privacy related matters. This blog post provides a few guidelines for end users to consider while registering to a service.
End User Consents Under the GDPR – Part 2: A Checklist for Data Controllers
The GDPR defines that consent must be freely given, specific and informed as well as unambiguous. These abstract terms as such do not tell much to the data controller about the way consent should be collected. This blog post contains some golden rules to take into consideration when collecting consents.
End User Consents Under the GDPR – Part 1: Issues Relating to Consent
The General Data Protection Regulation (GDPR) imposes stricter rules on consent. This first part addresses some issues linked to using end user consents in the online environment.
Children’s Privacy in the Internet of Things – Part 3: What to take into account when buying a “smart” toy for a child
There are some factors for the consumers to keep in mind when thinking about buying a new smart toy for a child.
Children’s Privacy in the Internet of Things – Part 2: How the GDPR boosts children’s privacy
The second part of our blog series will take a glance on how the GDPR will affect children’s privacy in the Internet of Things.
Children’s Privacy in the Internet of Things – Part 1: Threats that IoT poses to children’s privacy
There are new kinds of threats that IoT poses - not only for adults but also for children’s privacy.
Privacy Challenges – Part 5: Implementing privacy throughout organization
We have made the promise to help our clients understand their privacy challenges and enable them to tackle them in a way that meets both their business requirements and regulatory requirements.
Privacy Challenges – Part 4: Lack of privacy professionals
Privacy and data protection are one of the fastest growing and changing subject areas of this decade.
Privacy Challenges – Part 3: Lack of tools and best practices
Facing changes in regulation, organizations have yet to determine what the new regulation means for their business and customers.
Privacy Challenges – Part 2: Changing regulation
One of the most discussed topics in data protection has been the reform of the EU Data Protection rules.
Privacy Challenges – Part 1: Data is the new oil
Personal data is said to be the hottest commodity on the market in today’s network society.
Managed Data Protection solutions help manage privacy challenges
Data protection is one of the fastest growing industries in today’s network society. Personal data is used increasingly to derive business insights and to improve services.
Privacy Ecosystem Map
An ecosystem is a community of different players. Privacy ecosystem includes players from regulators to services providers, from law firms to technology companies.
Privacy test: How does Facebook read your phonebook?
Have you ever wondered Facebook’s ability to find and suggest “people you might know” both accurately and timely? We at Privaon did a test to find it out for you.
Privacy Engineering: Closing the gap between PbD and implementation
Privacy by Design (PbD) defines a number of principles that are useful for high-level target setting.
Preparing Your Organization for Right of Access
This blog text aims to show how companies should provide consumer access in accordance with the law and good practices.
Perceptions of controllers on EU data protection reform: Finnish perspective
The European Commission proposed a reform of the EU data protection framework in 2012.