Introduction In an increasingly digital age, the protection of children’s personal data has never been more critical. Recognising this, the Personal Data Protection Commission (PDPC) of Singapore issued Advisory Guidelines on 28 March 2024, focusing on the Personal Data Protection Act 2012 (PDPA) as it relates to children in the digital world. These guidelines provide […] Source ..read more

Introduction As of 25 December 2023, Thailand’s strides towards robust personal data protection continued with the release of pivotal subordinate regulations under the Personal Data Protection Act B.E. 2562 (2019) (PDPA). Published in the Government Gazette, these regulations, set to come into force on 24 March 2024, introduce significant changes to the cross-border transfer of […] Source ..read more

Introduction The General Data Protection Regulation (GDPR), particularly under Article 9(2)(b), provides specific provisions that permit the processing of special category data in the realm of employment, social security, and social protection law. This article aims to demystify the conditions under which such data can be processed, ensuring compliance while safeguarding the fundamental rights and […] Source ..read more

Introduction The processing of sensitive personal data, particularly within the health and social care sectors, is governed under stringent conditions to ensure the privacy and security of individuals. One such regulatory framework is outlined in Article 9(2)(h) and Article 9(3) of the UK General Data Protection Regulation (UK GDPR), read in conjunction with the Data […] Source ..read more

Introduction In today’s data-driven landscape, robust data governance is not merely an option but a necessity for organisations aiming to comply with global data protection regulations. Data Protection Authorities (DPAs) around the world mandate the maintenance of accurate and comprehensive records, underscoring the role of an Information Asset Register (IAR) as a cornerstone of effective […] Source ..read more

Introduction In today’s digital landscape, where data breaches are not only frequent but increasingly sophisticated, the need for robust data protection cannot be overstated. However, the journey towards effective data privacy management is fraught with high costs and complexities, especially for small to medium enterprises (SMEs). These challenges can deter SMEs from adopting necessary data […] Source ..read more

Introduction As the digital landscape evolves, U.S. and international companies face a complex challenge: complying with the ever-expanding patchwork of state data privacy laws in the absence of a comprehensive federal law. This rapidly changing regulatory environment demands a proactive and nuanced approach to data privacy practices. In this article, we provide a roadmap for […] Source ..read more

Introduction In the ever-evolving digital age, the educational software sector in the United States faces a complex web of privacy laws and regulations. These intricacies demand a high level of expertise to achieve and maintain compliance, especially with the increasing number of state-specific data privacy laws. From the broad federal mandates like the Family Educational […] Source ..read more

Introduction In the intricate ecosystem of care homes, where the privacy and dignity of residents are paramount, the adherence to data protection regulations cannot be overstated. This article elucidates the paramount steps and measures care homes must undertake to align with data protection laws, ensuring not only compliance but also the safeguarding of their residents’ […] Source ..read more

Introduction In an era where data breaches are not just incidents but stark realities, the significance of robust data privacy and security frameworks cannot be overstated. The recent investigation by the Personal Data Protection Commission (PDPC) of Singapore into Whiz Communications Pte. Ltd. underscores the critical need for organisations to continually reassess and enhance their […] Source ..read more