GDPR

CNIL Updates Its Practice Guide for the Security of Personal Data

CNIL, cybersecurity |

🚀 CNIL’s 2024 update to the Guide on Security of Personal Data is out and here are some key points:

🎓 Aimed at DPOs, CISOs, computer scientists, and privacy lawyers, the guide provides actionable advice for implementing effective security measures in compliance with GDPR Article 32.
🛠️ It offers a structured approach across five key areas: users, IT and equipment, data control, incident preparedness, and and specialized topics, simplifying navigation and understanding of complex security requirements.
🔄 New factsheets on cloud computing, mobile apps, AI, APIs, and data management have been added, reflecting the latest advancements in technology and data security challenges, aiming to provide a comprehensive resource for implementing effective data security measures.

💡Deeper dive in the article! 🔐

CNIL Updates Its Practice Guide for the Security of Personal Data Read More »

Can people really be in control of their data, and can consent ensure that?

Consent, EU law, GDPR |

  I recently wrote about the Black Mirror episode “Joan is Awful“📺, where the main character finds herself the protagonist of a broadcasted TV series🎥, for which she had allegedly given consent in the lengthy terms of service she signed. Perhaps the best articulation of why the prevalent approach of focusing on consent is problematic,

Can people really be in control of their data, and can consent ensure that? Read More »

Scroll to Top