Lawfulness: Legitimate interests
members
–
3 min read
17 Mar 2026: 🇳🇴 Datatilsynet with updated legitimate interest guidance. Could this mean the final EDPB Guidelines 1/2024 is just around the corner?
Personal data breaches – in practice
members
–
2 min read
A breach happens. What now? When are you "aware", how do you assess the risk – and who do you need to notify? 📝 Homework: download the revised breach flowchart, tailor it to your organisation and ensure you have a step-by-step process in place.
Data breaches
members
–
3 min read
🇳🇴 DPA with significant breach page change | Upcoming topic page for breaches, prompted by EDPB's summary document. Links so far: Denmark, Finland, France, Greece, Ireland, Italy, Norway, Spain, Sweden, ICO, EDPB, EDPS, EC.
The DPO role: Key resources
members
–
3 min read
🇧🇷 Interesting DPO survey highlighting familiar challenges | 🇪🇸 Andalusia DPA in June: DPOs in public sector can't also be infosec officer | 🇱🇹 2025 DPO guide | 🇳🇴 New DPO podcast series | Key DPO role resources: CJEU, EDPB, DPAs, EDPS, GDPR commentaries and more
The DPO role: Article 37(1)(b)
members
–
5 min read
10 Oct: Estonia's thresholds for 'large-scale' (5k, 10k, 50k) | Breaking down Article 37(1)(b) key terms: 'core activities', 'regular', 'systematic', 'monitoring' and 'large scale'. And what should you do if you're still unsure whether you need to appoint a DPO? Appoint one voluntarily?
Lawfulness: Consent
members
–
6 min read
Latest update: Luxembourg DPA with updated guidance. Start here for all things consent: when to rely on and not, practical tips and key resources (GDPR, DPD, CFR, OECD, CJEU rulings and EDPB guidance).
Rights: Access (DSAR, Right of access)
members
–
3 min read
All things right of access: Article 15 elements table, a handy flowchart, key CJEU rulings and Rie's practical guide (including how to deal with nightmare DSARs).
Access requests – in practice
members
–
3 min read
Recommendations on how to deal with the Right of access - DSARs - in practice (with grumpy DSARs checklist).
Rights: Access (DSAR) - examples
members
–
40 min read
Right of access examples from the EDPB and ICO.
Lawfulness: Consent - examples
members
–
33 min read
In need of consent inspiration or determine if your setup is (likely) compliant? Review this page for numerous examples!