Guidelines 1/2021 of the European Data Protection Board (EDPB) with examples of personal data breach notification (Guidelines 1/2021) approach this issue for the first time in such a practical way. The Guidelines were published in January 2021, were put to public consultation until March...

Data Protection Officer (DPO): key position in the public and private sector for the correct and full implementation of the legal framework for the protection of personal data. According to the GDPR, some controllers and processors are required to designate a DPO. In short, this obligation applies...

In accordance with decision No. 12/2021, published on April 7, the Hellenic Data Protection Authority (HDPA) imposed on a company a fine of 2,000 euros for illegal camera operation against employees. The video surveillance system did not have a recorder, but transmitted image to the mobile phone of the owner of the company...

The issue of handling the professional e-mail address of an employee, especially after his departure, remains at the forefront of the daily news, with a series of supervisory authorities' decisions. The practice that seems to be adopted very often by companies is the automatic forwarding of emails of the former employee - and sometimes of the current -...

A few days ago, the Commissioner for Personal Data Protection of Cyprus presented to the President of the Republic the Report of her Office in 2019. The Report includes activities of the Commisioner's Office with great interest in the implementation of the General Data Protection Regulation, also known as GDPR, which is the spine...