Denmark's data protection authority, Datatilsynet, published guidance on preventing employees' unauthorized access to personal data. The guidance recommends companies conduct a risk assessment to ensure appropriate frameworks are in place, ensure employees can only access information when there is a work-related need, log employees' use of personal data and implement control measures like continuous monitoring of employees' use of systems using personal data.
20 Sept. 2023
Denmark DPA publishes guidance on employee access to personal data
RELATED STORIES
Privacy in Arkansas: Is Arkansas ready for a consumer privacy law?
A view from DC: CFPB calls for states to regulate financial privacy
Notes from the IAPP Canada: OPC's WADA investigation 'raises some interesting issues'
A view from Brussels: European Commission's new tech policy center of gravity
First fine imposed under Thailand's Personal Data Protection Act