[GDPR] the WP29 & EDPB?
8 November, 2023
[GDPR] the WP29 & EDPB? The Article 29 Working Party (WP29) is the predecessor to the European Data Protection Board (EDPB), which was established under the General Data Protection Regulation (GDPR). WP29 was an advisory body composed of representatives from the national data protection authorities of all EU member states, as well as the European […]
[GDPR] Privacy Impact Assessment
8 November, 2023
[GDPR] Privacy Impact Assessment Performing a Privacy Impact Assessment (PIA) is an essential process that organizations undertake to ensure that their operations comply with data protection regulations and that they are protecting the privacy rights of individuals. A PIA is required under the GDPR for certain types of processing activities that are likely to result […]
[GDPR] The differences between privacy by design & privacy by default?
8 November, 2023
[GDPR] The differences between privacy by design & privacy by default? Under the General Data Protection Regulation (GDPR), Privacy by Design and Privacy by Default are two key principles that organizations are required to follow to ensure data protection and privacy. Here are the differences between Privacy by Design and Privacy by Default as defined […]
Data protection officer (DPO) under the GDPR
8 November, 2023
Data protection officer (DPO) under the GDPR Designating a data protection officer (DPO) is one of the statutory obligations on the controller and the processor in some particular circumstances according to the EU’s General Data Protection Regulation (GDPR). Here is an overview of GDPR regulations on DPO that enterprises and organisations can refer to, in […]
Consent for personal data processing under GDPR
8 November, 2023
Consent for personal data processing under GDPR One of the basic principles of personal data processing under the EU’s General Data Protection Regulations (“GDPR”) is the lawfulness principle. This means that the processing of personal data must have a lawful basis. The most common basis that is generally relied upon for personal data processing is […]
EU Artificial Intelligence Act
8 November, 2023
EU Artificial Intelligence Act In April 2021, the European Commission proposed the first EU regulatory framework for artificial intelligence (AI). The proposed AI act is the first-ever attempt to enact a horizontal regulation for AI. Now the EU lawmakers are starting negotiations to finalize the new regulations, with substantial amendments to the Commission’s proposal including […]
Record of processing activities under GDPR
8 November, 2023
Record of processing activities under GDPR A data controller (or processor) under the EU’s General Data Protection Regulation (“GDPR”) has many obligations it must adhere to in order to best protect the personal data being processed. One such obligation is creating and maintaining a Record of Processing Activities (“RoPA”). This is a basic yet effective […]
Do foreign enterprises have to store their data in Vietnam?
8 November, 2023
Do foreign enterprises have to store their data in Vietnam? In this day and age, data in general is increasingly becoming more and more valuable. Most service-based companies live off data collected from their clients, prime examples of this type of companies include social media networks such as Facebook or search engines such as Google […]
The Decree on personal data protection has been officially issued
8 November, 2023
The Decree on personal data protection has been officially issued On April 17, 2023, the Decree on Personal Data Protection has been issued as Decree No. 13/2023/ND-CP (hereinafter referred as “Decree”) and officially takes effect on July 1st, 2023. This is the first legal document that directly regulates the issue of personal data in Vietnam, […]
Managing spam messages and calls in Vietnam
8 November, 2023
Managing spam messages and calls in Vietnam Spam messages and calls have been defined as advertising messages and calls which are made without users’ prior consent as well as not being under the receiving responsibility of the recipients. So the question to be raised is why, despite the unwillingness to receive advertising information, do people […]