ResourceCenter

In this series for The Privacy Advisor, we ask privacy professionals who've been in the field for at least a few years to describe how they got their starts. The series aims to help new privacy professionals gain insights and ideas on how they might jumpstart their own careers. Kirk Nahra, CIPP/US, partner at Wiley ReinAs a career, privacy came quite logically but completely accidentally for me. Like everyone of my vintage, privacy was not something a lawyer thought about as a career. It really... Read More

The Council of the European Union's proposed revisions to the ePrivacy Regulation dated Sept. 8, 2017.Read Now (PDF 425K)... Read More

On this page, the International Association of Privacy Professionals is pleased to publish testimony from a potentially landmark case currently before the High Court of Ireland. The current case follows the 2015 decision by the Court of Justice of the European Union in Schrems v. Facebook, in which the CJEU struck down the EU-U.S. Safe Harbor. The current case was also brought by Austrian lawyer Max Schrems against Facebook, this time challenging the adequacy of protection for personal data tran... Read More

The European Union Agency for Network and Information Security, ENISA, in collaboration with the DPAs of Greece and Germany, produced this methodology for data breach severity assessment to be used both by DPAs as well as data controllers. (2013)Read Now (PDF 774K)... Read More

DLA Piper’s Article 28 GDPR working group produced this “Example Data Protection Addendum Addressing Article 28 GDPR (Processor Terms) and Incorporating Standard Contractual Clauses for Controller to Processor Transfers of Personal Data from the EEA to a Third Country.” Access Addendum (.doc)... Read More

Bird & Bird’s GDPR Tracker shows how and where the GDPR has been supplemented locally, highlighting where member states have taken the opportunities available in the law for national variation. Access Tracker... Read More

This interactive tool from the Center for Democracy & Technology offers insight on questions to ask throughout the design, build, test and implementation of an algorithm to help prevent bias and discrimination within it. Access Tool... Read More

While the role of data protection officer has come into the spotlight given the impending General Data Protection Regulation in the EU, with that prominence may come personal liability. As the titular head of the data protection and privacy program, the DPO may be interpreted as the final decision maker surrounding the use of personal data, and in some jurisdictions that role can come with personal civil and criminal liability. In this white paper overview, IAPP Legal Extern Carissa Hanratty, CI... Read More