Torii, profile picture
Uploaded byTorii
4,659 views

GDPR Cheat Sheet

The document outlines principles and rights regarding personal data privacy, emphasizing the importance of informed consent, data access, and the right to be forgotten. It highlights responsibilities for data controllers and processors, including breach notifications and the appointment of data protection officers. Additionally, it calls for the integration of data protection measures from the design stage of systems and recommends thorough documentation and risk analysis processes.

Embed presentation

Downloaded 81 times
We respect your privacy! I’ve heard that before... Anyway, our service is much better when personalized. Why we need it?
And let’s agree that you need to ask me for it and that I still own it. Ok, I’ll share with you my private data. But this is what respect means for me: Understand what you collect and what you do with it Collect just what you need and guard it. Do the right thing about it
AGREE? #@*()^&$ Consent In obtaining consent for data, companies cannot use indecipherable terms and conditions filled with legalese. It must be easy to withdraw consent as it is to give it. Components
Breach notifications In the event of a data breach, data processors have to notify their controllers and customers of any risk within 72 hours.
Right to access Data subjects have the right to obtain confirmation from data controller of whether their personal data are being processed. Data controller should provide an electronic copy of personal data for free to data subjects.
Right to be forgotten When data is no longer relevant to its original purpose, data subject can have the data controller erase their personal data, and cease its dissemination.
Data portability Allows individuals to obtain and reuse their personal data for their own purpose by transferring it across different IT environments.
Privacy by design Calls for inclusion of data protection from the onset of designing systems, implementing appropriate technical and infrastructural measures.
Data protection officers Professionally qualified officers must be appointed in public authorities, or organizations that engage in large scale (>250 employees) systematic monitoring or processing of sensitive personal data.
Fine Can get to 20,000,000 EUR or 4% of annual turnover.
What should be done? Champion Assign someone in charge. Map 1. Tools the person is engaged with. 2. Type of data collected. 3. The flow of the data in your systems and external systems. Analyze Perform Data Protection Risk analysis.
Enable Enable data transfer, breach notifications, data erasing. Protect Standardize the Data protection. Map Impose procedures and to keep your standard. Document Document each of the parts above to keep it in place.
When? May 25, 2018
Data Controller Businesses that collect their end users’ data and decide why and how that data is processed. Data Processor A company that helps our customers with the processing of their customer data. Who?
Follow us on Twitter toriihq.com Made with by Torii

More Related Content

PPTX
GDPR Data Life Cycle
byJatin Kochhar
 
PPTX
Why We Require GDPR?
byJatin Kochhar
 
PPTX
GDPR Data Lifecycle
byJatin Kochhar
 
PDF
Webinar Mastery Series: Email Retention Regulations in India and How Business...
byVaultastic
 
PPT
2014 dpa training february nn
byLawrence Serewicz
 
PDF
Jadu GDPR guide: A easy to follow guide for Digital Service Managers and Webs...
byJadu
 
PPT
The Top 6 Data Challenges of Cloud Computing
byDarren Cunningham
 
PDF
Top 10 GDPR Requirements
byRusty Stanberry
 
GDPR Data Life Cycle
byJatin Kochhar
 
Why We Require GDPR?
byJatin Kochhar
 
GDPR Data Lifecycle
byJatin Kochhar
 
Webinar Mastery Series: Email Retention Regulations in India and How Business...
byVaultastic
 
2014 dpa training february nn
byLawrence Serewicz
 
Jadu GDPR guide: A easy to follow guide for Digital Service Managers and Webs...
byJadu
 
The Top 6 Data Challenges of Cloud Computing
byDarren Cunningham
 
Top 10 GDPR Requirements
byRusty Stanberry
 

What's hot

PPTX
ILP Guide To Data Protection For Volunteers
byInstitution of Lighting Professionals
 
PDF
Data protection Act - Key Terms
byDouglas Nderitu
 
PPTX
Eight principles of consumer data privacy
bySolix Technologies, Inc
 
PDF
BigDataRevealed SecureSequesterEncrypt - iot easy as 1-2-3 - catalog-metadata...
bySteven Meister
 
PDF
Comply with Email retention regulations in India and cut costs using cloud em...
byVaultastic
 
PDF
Gdpr compliance on_aws
bysaifam
 
PDF
Enacting the Data Subjects Access Rights for GDPR with Data Services and Data...
byJean-Michel Franco
 
PDF
What does GDPR laws mean for Australian businesses
byiFactory Digital
 
PPTX
A Little Security For Big Data
bySaurabh Kheni
 
PPTX
IOT wearable device case study
byRajinder Singh, PRINCE2® Practitioner
 
PDF
GDPR and technology - details matter
byExove
 
PDF
Cloud Types and Security- Which one is right for you?
byFuji Xerox Asia Pacific
 
PPTX
Avizia telehealth care solution aws
byowatheowais
 
PPS
Email archiving webinar
byBridgeHead Software
 
ODT
Data protectionpolicyliec
byvrishi31
 
PPTX
[IGNITE2018] [BRK2495] What’s new in Microsoft Information Protection solutio...
by☁️ Gustavo Magella
 
PDF
Expanded top ten_big_data_security_and_privacy_challenges
byTom Kirby
 
PPTX
Mobile Shelving Benefits | Kristar Advanced Tech Solutions
byKristar Advanced Tech Solutions
 
PPTX
Securing Data in the Cloud - GISEC2017
bySohaib Mahmood
 
ILP Guide To Data Protection For Volunteers
byInstitution of Lighting Professionals
 
Data protection Act - Key Terms
byDouglas Nderitu
 
Eight principles of consumer data privacy
bySolix Technologies, Inc
 
BigDataRevealed SecureSequesterEncrypt - iot easy as 1-2-3 - catalog-metadata...
bySteven Meister
 
Comply with Email retention regulations in India and cut costs using cloud em...
byVaultastic
 
Gdpr compliance on_aws
bysaifam
 
Enacting the Data Subjects Access Rights for GDPR with Data Services and Data...
byJean-Michel Franco
 
What does GDPR laws mean for Australian businesses
byiFactory Digital
 
A Little Security For Big Data
bySaurabh Kheni
 
IOT wearable device case study
byRajinder Singh, PRINCE2® Practitioner
 
GDPR and technology - details matter
byExove
 
Cloud Types and Security- Which one is right for you?
byFuji Xerox Asia Pacific
 
Avizia telehealth care solution aws
byowatheowais
 
Email archiving webinar
byBridgeHead Software
 
Data protectionpolicyliec
byvrishi31
 
[IGNITE2018] [BRK2495] What’s new in Microsoft Information Protection solutio...
by☁️ Gustavo Magella
 
Expanded top ten_big_data_security_and_privacy_challenges
byTom Kirby
 
Mobile Shelving Benefits | Kristar Advanced Tech Solutions
byKristar Advanced Tech Solutions
 
Securing Data in the Cloud - GISEC2017
bySohaib Mahmood
 

Similar to GDPR Cheat Sheet

PDF
data-privacy-egypt-what-you-need-know-en.pdf
bykiruthigajawahar6
 
PDF
data privacy handbook: A starter guide to data privacy compliance
byDesmondMontgomery2
 
PPTX
U1 - Data Privacy and Compliance Requirements.pptx
byKPR Institute of Engineering and Technology
 
PDF
Getting Ready for GDPR
byJessvin Thomas
 
PPTX
Privacy (1).pptx
byEng. Ala' Zayadeen- MBA,CEH,ISO Lead Implementer, MCP
 
PDF
Protection des données et de la vie privée : nouvelles obligations pour les e...
byForums financiers de Wallonie
 
PDF
How does GDPR Regulation help in Data Protection and Data Privacy?
byTobyRobinson13
 
PDF
GDPR - Sink or Swim
byGuy Griffiths
 
PDF
Data Privacy Program – a customized solution for the new EU General Regulatio...
byIAB Bulgaria
 
PPT
An introduction to data protection - 30 Jan 2014
byRachel Aldighieri
 
PPTX
Getting Ready for GDPR
byJessvin Thomas
 
PDF
Gdpr and usa data privacy issues
byStefan Schippers
 
PDF
Introduction to data protection
byRachel Aldighieri
 
PPTX
Chapter 08 – Data Protection, Privacy and Freedom of Information - BIT IT5104
byUpekha Vandebona
 
PDF
Privacy-ready Data Protection Program Implementation
byEryk Budi Pratama
 
PDF
Legal and data protection update
byRachel Aldighieri
 
PPTX
3A – DATA PROTECTION: ADVICE
byCFG
 
PDF
GDPR for your Payroll Bureau
byBrightPay Payroll and Auto Enrolment Software
 
PPT
Data privacy & social media
byProf. Jacques Folon (Ph.D)
 
PDF
DAMA Ireland - GDPR
byDAMA Ireland
 
data-privacy-egypt-what-you-need-know-en.pdf
bykiruthigajawahar6
 
data privacy handbook: A starter guide to data privacy compliance
byDesmondMontgomery2
 
U1 - Data Privacy and Compliance Requirements.pptx
byKPR Institute of Engineering and Technology
 
Getting Ready for GDPR
byJessvin Thomas
 
Privacy (1).pptx
byEng. Ala' Zayadeen- MBA,CEH,ISO Lead Implementer, MCP
 
Protection des données et de la vie privée : nouvelles obligations pour les e...
byForums financiers de Wallonie
 
How does GDPR Regulation help in Data Protection and Data Privacy?
byTobyRobinson13
 
GDPR - Sink or Swim
byGuy Griffiths
 
Data Privacy Program – a customized solution for the new EU General Regulatio...
byIAB Bulgaria
 
An introduction to data protection - 30 Jan 2014
byRachel Aldighieri
 
Getting Ready for GDPR
byJessvin Thomas
 
Gdpr and usa data privacy issues
byStefan Schippers
 
Introduction to data protection
byRachel Aldighieri
 
Chapter 08 – Data Protection, Privacy and Freedom of Information - BIT IT5104
byUpekha Vandebona
 
Privacy-ready Data Protection Program Implementation
byEryk Budi Pratama
 
Legal and data protection update
byRachel Aldighieri
 
3A – DATA PROTECTION: ADVICE
byCFG
 
GDPR for your Payroll Bureau
byBrightPay Payroll and Auto Enrolment Software
 
Data privacy & social media
byProf. Jacques Folon (Ph.D)
 
DAMA Ireland - GDPR
byDAMA Ireland
 

Recently uploaded

PDF
Why Some Online Profiles Cannot Be Found in Search Results
bySocial Searcher
 
PDF
Mastering ROS 2 for Robotics Programming.pdf
byssuser4e6c051
 
PPTX
7G (7th generation of technology) seminar presentation
bymitalijally6
 
PPTX
Cloud Computing ppt - SP.pptx by ankit kumar gurjar
byankitingame
 
PDF
InfoSec Professionals Roles & Responsibilities
byJoe Shenouda
 
PPT
The Digital Opportunities Taskforce: How to Govern the Internet
byJeffrey Hart
 
PDF
Meta (Facebook) Extracts Hundreds of Billions of Wealth from European Citizens
byJulieMeyer42
 
PDF
Guide: Essential Google Search Operators
bySocial Searcher
 
Why Some Online Profiles Cannot Be Found in Search Results
bySocial Searcher
 
Mastering ROS 2 for Robotics Programming.pdf
byssuser4e6c051
 
7G (7th generation of technology) seminar presentation
bymitalijally6
 
Cloud Computing ppt - SP.pptx by ankit kumar gurjar
byankitingame
 
InfoSec Professionals Roles & Responsibilities
byJoe Shenouda
 
The Digital Opportunities Taskforce: How to Govern the Internet
byJeffrey Hart
 
Meta (Facebook) Extracts Hundreds of Billions of Wealth from European Citizens
byJulieMeyer42
 
Guide: Essential Google Search Operators
bySocial Searcher
 

GDPR Cheat Sheet

  • 2.
    We respect yourprivacy! I’ve heard that before... Anyway, our service is much better when personalized. Why we need it?
  • 3.
    And let’s agreethat you need to ask me for it and that I still own it. Ok, I’ll share with you my private data. But this is what respect means for me: Understand what you collect and what you do with it Collect just what you need and guard it. Do the right thing about it
  • 4.
    AGREE? #@*()^&$ Consent In obtaining consentfor data, companies cannot use indecipherable terms and conditions filled with legalese. It must be easy to withdraw consent as it is to give it. Components
  • 5.
    Breach notifications In theevent of a data breach, data processors have to notify their controllers and customers of any risk within 72 hours.
  • 6.
    Right to access Datasubjects have the right to obtain confirmation from data controller of whether their personal data are being processed. Data controller should provide an electronic copy of personal data for free to data subjects.
  • 7.
    Right to beforgotten When data is no longer relevant to its original purpose, data subject can have the data controller erase their personal data, and cease its dissemination.
  • 8.
    Data portability Allows individualsto obtain and reuse their personal data for their own purpose by transferring it across different IT environments.
  • 9.
    Privacy by design Callsfor inclusion of data protection from the onset of designing systems, implementing appropriate technical and infrastructural measures.
  • 10.
    Data protection officers Professionallyqualified officers must be appointed in public authorities, or organizations that engage in large scale (>250 employees) systematic monitoring or processing of sensitive personal data.
  • 11.
    Fine Can get to20,000,000 EUR or 4% of annual turnover.
  • 12.
    What should bedone? Champion Assign someone in charge. Map 1. Tools the person is engaged with. 2. Type of data collected. 3. The flow of the data in your systems and external systems. Analyze Perform Data Protection Risk analysis.
  • 13.
    Enable Enable data transfer,breach notifications, data erasing. Protect Standardize the Data protection. Map Impose procedures and to keep your standard. Document Document each of the parts above to keep it in place.
  • 14.
  • 15.
    Data Controller Businesses thatcollect their end users’ data and decide why and how that data is processed. Data Processor A company that helps our customers with the processing of their customer data. Who?
  • 16.
    Follow us onTwitter toriihq.com Made with by Torii