Denmark's data protection authority, Datatilsynet, published guidance on preventing employees' unauthorized access to personal data. The guidance recommends companies conduct a risk assessment to ensure appropriate frameworks are in place, ensure employees can only access information when there is a work-related need, log employees' use of personal data and implement control measures like continuous monitoring of employees' use of systems using personal data.
20 Sept. 2023
Denmark DPA publishes guidance on employee access to personal data
RELATED STORIES
A view from DC: The growing reckoning over location data
Notes from the IAPP Canada: CRA breach a 'cautionary tale'
Notes from the IAPP Europe: October wrap-up
Council of Europe's Framework Convention on AI and its global implications
Notes from the Asia-Pacific region: Amid festive backdrop, Singapore unveils secure AI guidelines