Marketing refers to any actions a company enacts to attract an audience to the company’s product or services through high-quality message delivery conducted in different ways. Marketing aims to deliver standalone value for prospects and consumers through content, with the long-term goal of demonstrating product value, strengthening brand loyalty, and ultimately increasing sales. Segmentation of marketing as direct or indirect is based on the method of audience targeting and the nature of the message. Marketing is direct if communication (in meaning of advertising or marketing material) is dire ..read more

Australia is a great country to work with, as it is highly digitalized, developed, and English-speaking. Thus, selling services to or establishing a company is a good jurisdiction. With this regard, it is essential to know about the privacy legislation of this country since, nowadays, most internet businesses process the personal data of their clients, and they should do it in compliance with data protection laws. So, let’s look at Australian privacy legislation, its recent changes and what to expect in the near future.  Privacy legislation in Australia The main privacy regulation is the ..read more

A data protection officer (DPO) is a specialist who helps companies ensure compliance with international data protection laws. Such a specialist can be a member of the team or an external DPO and perform tasks based on a service contract. A DPO can assist companies with setting up all processes related to personal data, drafting and auditing relevant documentation, with data subjects’ requests, data breaches, and conducting training for employees. In a nutshell, the DPO is a key person who helps the company in all business processes to ensure compliance with the data protection law.  The ..read more

Companies often need to transfer personal data to other countries while conducting their business operations. Since personal data is not everywhere reliably protected by law, there are plenty of requirements for its legal transfer. In this article, we share how to transfer data from the UK using recently adopted instruments. To begin with, the UK GDPR adopted after the UK Brexit basically duplicates the provisions of the European GDPR, which is why the data transfer requirements from the UK to other countries are the same as for the transfers from the EU to third countries. First of all, the d ..read more

On October 10, the Governor of California signed Bill No. 362, the so-called DELETE Act, an amendment to the California Civil Code (hereinafter- CC). This document defines new requirements for data brokers that also work with information about California residents. How was it before? Data brokers must register with the California Attorney General, pay a registration fee, and provide relevant information about their activities. Brokers must provide their name, primary physical address, email, and website when registering. The Attorney General has the right to file an administrative lawsuit agai ..read more

Facebook and Instagram display personalized advertisements based on your actions and preferences, similar to other websites you visit. This has become an integral part of our lives. However, have you ever considered the power of the technologies that enable ad targeting and the legal requirements behind them? If you are planning to start your own AdTech business, even if it is just a small component on your website with one integration with an ad network, it is crucial to ensure that you do not violate the privacy legislation when processing user data.  Today, we will discuss the top 5 pr ..read more

Failure to comply can result in a significant fine imposed by the Supervisory Authority. For example, in 2020, the Data Protection Authority of Hamburg imposed a 35.3 million euro fine on H&M for violation of Articles 5 and 6 of the GDPR. In particular, specific details about the lives of some employees of H&M (illnesses, medical diagnoses, religious beliefs, and family problems) were comprehensively recorded and stored as information on a network drive. This fact became known when the H&M servers encountered a technical error, and the data on the network drive became accessible to ..read more

International data transfers in GDPR compliance are complex, as data are transferred to third countries outside the European Union (EU) or the European Economic Area (EEA). Suppose you are interested in personal data protection issues. In that case, you already know about the Schrems II decision, in which the Court of Justice of the European Union (CJEU) indicated that the level of protection of personal data transferred outside the EEA and EU should remain equivalent to that guaranteed in the EU and EEA (but does not necessarily have to be identical). That is, the transfer of personal data to ..read more

A ..read more

A ..read more