Published: December 8, 2016

In this 10-part series, IAPP Research Director Rita Heimes, CIPP/US, and Westin Research Fellows Gabriel Maldoff, CIPP/US, and Anna Myers, CIPP/US, explore the major issues with which organizations will have to grapple as they bring themselves into compliance with the world’s most impactful privacy law.

Part 1: Cybersecurity and data breach notification obligations
By Rita Heimes, CIPP/US

Part 2: The mandatory data protection officer requirement
By Rita Heimes, CIPP/US

Part 3: Consent
By Gabriel Maldoff, CIPP/US

Part 4: Cross-border data transfers
By Anna Myers, CIPP/US

Part 5: Profiling
By Rita Heimes, CIPP/US

Part 6: RTBF and data portability
By Gabriel Maldoff, CIPP/US

Part 7: Vendor Management
By Anna Myers, CIPP/US

Part 8: Pseudonymization
By Gabriel Maldoff, CIPP/US

Part 9: Codes of conduct and certifications
By Rita Heimes, CIPP/US

Part 10: Consequences for GDPR violations
By Anna Myers, CIPP/US