Denmark's data protection authority, Datatilsynet, published guidance on preventing employees' unauthorized access to personal data. The guidance recommends companies conduct a risk assessment to ensure appropriate frameworks are in place, ensure employees can only access information when there is a work-related need, log employees' use of personal data and implement control measures like continuous monitoring of employees' use of systems using personal data.