Relevant bibliographies by topics / The GDPR

Academic literature on the topic 'The GDPR'

Author: Grafiati
Published: 11 March 2023

Create a spot-on reference in APA, MLA, Chicago, Harvard, and other styles

Select a source type:

Contents

Consult the lists of relevant articles, books, theses, conference reports, and other scholarly sources on the topic 'The GDPR.'

Next to every source in the list of references, there is an 'Add to bibliography' button. Press on it, and we will generate automatically the bibliographic reference to the chosen work in the citation style you need: APA, MLA, Harvard, Chicago, Vancouver, etc.

You can also download the full text of the academic publication as pdf and read online its abstract whenever available in the metadata.

Journal articles on the topic "The GDPR"

1

Iramina, Aline. "GDPR v. GDPL." Law, State and Telecommunications Review 12, no. 2 (October 13, 2020): 91–117. http://dx.doi.org/10.26512/lstr.v12i2.34692.

Full text
Abstract:
Purpose ”“ The main purpose of this article is to analyze the aspects of the responsiveness approach adopted by European and Brazilian lawmakers in the elaboration of data protection rules, such as GDPR and LGPD. Methodology ”“ The applied methodology is based on the responsive regulation theory and, additionally, the network governance theory, through the comparative analysis of personal data protection legal frameworks in Brazil and the EU. Findings ”“ Based on the comparative analysis of the GDPR and the LGPD, it is verified the adoption of escalated regulatory techniques of Ayres and Braithwaite’s enforcement pyramid in the developed of these norms, as a strategy adopted by lawmakers to guarantee a greater compliance from regulated entities.
APA, Harvard, Vancouver, ISO, and other styles
2

Kaczyńska-Kral, Agata M. "Spór kompetencyjny Ministra Cyfryzacji oraz Prezesa Urzędu Ochrony Danych Osobowych na podstawie art. 33 Prawa przedsiębiorców." Studia Iuridica 77 (March 20, 2019): 59–67. http://dx.doi.org/10.5604/01.3001.0013.1866.

Full text
Abstract:
On the basis of the Polish law of entrepreneurs, a competency dispute arose between the Minister of Digitization and the President of the Office of Personal Data Protection. Both authorities deem it appropriate to interpret GDPR. The Minister of Digitization believes that he is authorized because of the rights to create a policy in the field of personal data protection. The President of the Office for Personal Data Protection believes that he is authorized as a supervisory body according to GDRP and the competent authority for the protection of personal data. Due to the fact that the GDPR is an act of a higher rank than the Polish law, it is necessary to admit to the supervisory body that it is the only person entitled to a binding interpretation of GDPR regulations.
APA, Harvard, Vancouver, ISO, and other styles
3

MacGregor Pelikánová, Radka, and Eva Daniela Cvik. "Impact of GDPR Security Measures on the Intellectual Property and Unfair Competition." Acta Universitatis Agriculturae et Silviculturae Mendelianae Brunensis 66, no. 6 (2018): 1535–42. http://dx.doi.org/10.11118/actaun201866061535.

Full text
Abstract:
The Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“GDPR”) created a duty to implement appropriate technical and organizational measures to ensure a level of security to protect natural persons with regard to the processing of personal data. Infringement of this duty is severely punished. These GDPR security measures and their operation should effectively and efficiently reflect intellectual property (“IP”) and unfair competition concerns. The theoretic teleological interpretation of the GDPR along with the critical study of the academic literature is complemented by a practical exploratory investigation via a micro‑case study based on interviews of a well‑balanced group of subjects of this GDRP duty – Czech SMEs. Although the yielded results are rather indicative than generally conclusive, they allow to suggest a partial confirmation of the proposed hypotheses that this GDPR duty will have a significant impact on IP and unfair competition. The semi‑conclusions based on the primary and secondary data enlightens the status quo, offers recommendations and brings suggestions for further research.
APA, Harvard, Vancouver, ISO, and other styles
4

Laybats, Claire, and John Davies. "GDPR." Business Information Review 35, no. 2 (June 2018): 81–83. http://dx.doi.org/10.1177/0266382118777808.

Full text
Abstract:
This article discusses the main changes to data protection regulation with the introduction of the General Data Protection Regulation (GDPR) that comes into effect on 25 May 2018. It considers the effect on organizations coming under its jurisdiction through an interview with John Davies, Managing Director of digital agency Reading Room, and then goes on to consider the implications for organizations currently out of the geographical area the GDPR controls. It finally considers the implications for the future as the GDPR becomes established.
APA, Harvard, Vancouver, ISO, and other styles
5

Hirvonen, Pauliina. "Expectations And Mindsets Related To GDPR." European Conference on Cyber Warfare and Security 21, no. 1 (June 8, 2022): 360–67. http://dx.doi.org/10.34190/eccws.21.1.238.

Full text
Abstract:
The aim of this qualitative case study is to examine the initial expectations and assumptions related to General Data Protection Regulation (GDPR) of the European Union from the perspectives of selected Finnish organizations: what were the initial expectations of GDPR, how were they adapted/refined over time, and what was the impact on organizational planning and resourcing. There are no precise earlier studies on the subject. The research question was: What were the organizations’ initial expectations of GDPR - and how have they affected the efforts made? GDPR can be described as an input that forms images, preconceptions and views among other things, through various active and passive communication flows. As the empirical results indicate GDPR has been a legal issue, mainly due to the inadequate and unspecific active, official, communication flows. As a result, organizations have experienced difficulties to scale the necessary GDPR efforts. The results of this research can benefit both privacy and information security managers and personnel responsible for aligning policies and practices, and to evaluate organization-specific actions on GDPR compliance. The results can support regulators and authorities in the future GDPR and other policy work and provide ideas for service providers.
APA, Harvard, Vancouver, ISO, and other styles
6

Bin Othman, Mohd Bahrin, and Muhammad Faiz Bin Abu Samah. "The Magnitude of GDPR To Malaysia." Malaysian Journal of Social Sciences and Humanities (MJSSH) 7, no. 9 (September 30, 2022): e001776. http://dx.doi.org/10.47405/mjssh.v7i9.1776.

Full text
Abstract:
The European Union (“EU”) General Data Protection Regulation (“GDPR”) governs any individuals or companies that stores or processes personal information about EU citizens within EU states even if it does not involve a business presence within the EU. Malaysian businesses need to comply with the GDPR as failure to comply will cause disruption or discontinuance of business. This paper aims to understand and evaluate the scope of the GDPR and its effect on personal data protection in Malaysia. It employs a doctrinal qualitative approach by examining the GDPR and the Malaysia Personal Data Protection Act 2010. This paper suggests that the GDPR provides a more comprehensive law with its holistic principles and rights which may provide lessons for Malaysia in protecting personal data as the area covered by the GDPR is broader specifically the non-commercial transactions, its wider range of rights and the extraterritorial applicability.
APA, Harvard, Vancouver, ISO, and other styles
7

Zanker, Marek, Vladimír Bureš, Anna Cierniak-Emerych, and Martin Nehéz. "The GDPR at the Organizational Level: A Comparative Study of Eight European Countries." E+M Ekonomie a Management 24, no. 2 (June 2021): 207–22. http://dx.doi.org/10.15240/tul/001/2021-2-013.

Full text
Abstract:
The General Data Protection Regulation, also known as the ‘gold standard’ or the ‘Magna Carta’ of cyber laws, is a European regulation that deals with rights in the area of privacy and focuses on data collection, storage and data processing. This manuscript presents the results of investigation in the business sphere from eight countries of the European Union. The research focused on awareness of the GDPR, costs associated with the GDPR, number of trainings, how data are secured and subjective evaluation. The questionnaire was used for data collection. The results show that the majority of employees concerned about the GDPR are able to define the GDPR correctly (64%). The correct identification of personal data is in 95% of cases. The vast majority of respondents (94%) assign the right to personal data protection to the GDPR. Most employees are trained in the GDPR once (46%) or twice (45%). Subsequently, the differences between these countries in some areas of the questionnaire survey were examined. For this purpose, Welch ANOVA with post-test Tukey HSD or Kruskal-Wallis test were used. As a result, knowledge about the personal data do not vary significantly between the countries. In the area of rights, the countries are not again statistically different. As for the number of security countries, statistics do not differ significantly. The subjective assessment of the GDPR is different across the countries. The GDPR is rated worst by companies in the Czech Republic and Slovakia. On the contrary, the GDPR is best perceived by companies in France and the United Kingdom.
APA, Harvard, Vancouver, ISO, and other styles
8

Seo, Junwoo, Kyoungmin Kim, Mookyu Park, Moosung Park, and Kyungho Lee. "An Analysis of Economic Impact on IoT Industry under GDPR." Mobile Information Systems 2018 (December 5, 2018): 1–6. http://dx.doi.org/10.1155/2018/6792028.

Full text
Abstract:
The EU GDPR comes into effect on May 25, 2018. Under this regulation, stronger legislation than the existing directive can be enforced. The IoT industry, especially among various industries, is expected to be heavily influenced by GDPR since it uses diverse and vast amounts of personal information. This paper first analyzes how the IoT industry handles personal information and summarizes why it is affected by GDPR. The paper then uses the cost definition of Gordon and Loeb model to estimate how GDPR affects the cost of IoT firms qualitatively and uses the statistical and legal bases to estimate quantitatively. From a qualitative point of view, GDPR impacted the preventative cost and legal cost of the Gordon and Loeb model. Quantitative view showed that the cost of IoT firms after GDPR could increase by three to four times on average and by 18 times if the most. The study finally can be applied to situational awareness of the economic impact on the certain industry.
APA, Harvard, Vancouver, ISO, and other styles
9

Serrado, João, Ruben Filipe Pereira, Miguel Mira da Silva, and Isaías Scalabrin Bianchi. "Information security frameworks for assisting GDPR compliance in banking industry." Digital Policy, Regulation and Governance 22, no. 3 (August 11, 2020): 227–44. http://dx.doi.org/10.1108/dprg-02-2020-0019.

Full text
Abstract:
Purpose Data can nowadays be seen as the main asset of organizations and data leaks have a considerable impact on the organization’s image, revenues and possible consequences to the affected clients. One of the most critical industries is the bank. Information security frameworks (ISF) have been created to assist organizations and other frameworks evolved to update these domain practices. Recently, the European Union decided to create the general data protection regulation (GDPR), applicable to all organizations dealing with personal data of citizens residing in the European Union. Although considered a general regulation, GDPR implementation needs to align with some industries’ laws and policies. Especially in the Bank industry. How these ISF can assist the implementation of GDPR is not clear. Design/methodology/approach The design science research process was followed and semi-structured interviews performed. Findings A list of practices to assist the bank industry in GDPR implementation is provided. How each practice map with assessed ISF and GDPR requirements is also presented. Research limitations/implications As GDPR is a relatively recent subject, it is hard to find experts in the area. It is more difficult if the authors intend to find experienced people in the GDPR and bank industry. That is one of the main reasons this study does not include more interviews. Originality/value This research provides a novel artefact to the body of knowledge. The proposed artefact lists which ISF practices banks should implement to comply with GDPR. By doing it the artefact provides a centralized view about which ISF frameworks (or part of them) could be implemented to help banks comply with GDPR.
APA, Harvard, Vancouver, ISO, and other styles
10

Harris, David, Susie Samuel, and Edmunda Probert. "GDPR confusion." Veterinary Record 183, no. 12 (September 28, 2018): 388.1–388. http://dx.doi.org/10.1136/vr.k3956.

Full text
APA, Harvard, Vancouver, ISO, and other styles
More sources

Dissertations / Theses on the topic "The GDPR"

1

Niklasson, Frida, Linda Ojari, and Malin Falkeling. "6 månader efter GDPR : GDPR i systemutvecklingsverksamheter." Thesis, Örebro universitet, Handelshögskolan vid Örebro Universitet, 2019. http://urn.kb.se/resolve?urn=urn:nbn:se:oru:diva-72621.

Full text
APA, Harvard, Vancouver, ISO, and other styles
2

Nord, Lisa. "Programvaruutvecklingen efter GDPR : Effekten av GDPR hos mjukvaruföretag." Thesis, Blekinge Tekniska Högskola, Institutionen för programvaruteknik, 2020. http://urn.kb.se/resolve?urn=urn:nbn:se:bth-20146.

Full text
Abstract:
GDPR (General data protection regulation, generella dataskyddsförordningen) är en ny europeisk förordning som reglerar behandlingen av känsliga uppgifter samt det fria flödet av dessa inom EU. Förordningen utgör ett skydd för fysiska personer vid behandling av deras personuppgifter inom unionen vilket är en grundläggande rättighet.  GDPR har sedan den trädde i kraft i Maj 2018 varit en förordning att räkna med då dess bötesbelopp är höga. Alla företag inom Europa behöver följa reglerna samt företag utanför EU som hanterar europeiska personuppgifter. Målet med detta arbete är se vilken effekt GDPR har haft hos svenska mjukvaruutvecklare och hur de ser på sin arbetsbörda. Detta har gjorts genom en enkätundersökning hos svenska mjukvaruföretag som blivit slumpmässigt utvalda. Av uppsatsens resultat framgår det att många mjukvaruföretag som skapar egen programvara eller distribuerar programvara för en tredje part har den nya förordningen inneburit ett tyngre arbetslass samt omförhandling av existerande programvarulösningar. Något som inneburit nya arbetsplatser eller arbetsgrupper hos många företag. När GDPR först trädde ikraft lades det ner många arbetstimmar på att omvandla redan existerande lösningar för att uppfylla kraven. Trots detta har det lagts många fler timmar vid utveckling även efter GDPR för att se till att den nya programvaran även den lever upp till de krav som är ställda.  Av resultatet kan vi även finna att många företag ser väldigt strikt på hantering av känsliga uppgifter de samlat in från deras kunder men ser mindre strikt på lagring och hantering av personuppgifter av sina egna anställda.
GDPR(General data protection regulation) is a new European regulation that regulates data, protection, and privacy. It also addresses the transfer of personal data to countries outside of the European Union. Ever since the GDPR was enforceable May 2018, it has been a regulation for businesses to strictly follow and be wary of due to the hefty fines. All European businesses need to follow the new regulation and likewise, so to the businesses outside of the E.U. in which handles any type of personal data of Europeans. The goal with this thesis is to see the effect the GDPR has had for Swedish software developers and how they portray their workload. This data has been shown in the form of a questionnaire which was randomly distributed to a number of Swedish software companies.  In conclusion, this thesis shows that the new regulation has had a big impact on the developers that create new software/distributes software, primarily in form of a heavier workload and the need to re-negotiate already existing software. This has provided new jobs and/or new teams for many of the companies that were a part of this study. When GDPR was first introduced, the software companies spent countless hours on converting already existing software. Even tho they spend a lot of time in the beginning, the dedication of time is spent on every solution to make sure it meets the requirements of GDPR: We can also see that many businesses spend a lot more time and money on data protection for their clients personal data, but they do not treat their employees personal data in the same way.
APA, Harvard, Vancouver, ISO, and other styles
3

Chosrat, Ismail, and Rödin Joakim. "GDPR i praktiken." Thesis, KTH, Hälsoinformatik och logistik, 2018. http://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-230604.

Full text
Abstract:
Med den nya dataskyddsförordningen (GDPR) i EU ställs det högre krav på hantering avpersonuppgifter och för första gången riskerar företag sanktioner om de inte hanterar personuppgifterkorrekt, vilket medför att alla organisationer måste ta ställning till hur personuppgifterskall hanteras inom organisationen. Inom IT-sektorn måste en analys utföras omvilka data som kommer att påverkas med införandet av GDPR och hur data ska hanteras inuvarande IT-system. Studien har genomförts hos företaget Primona som är placerade iStockholm där de utvecklar lösningar inom inköp och elektronisk handel.Den nya dataskyddsförordningen och relaterade arbeten har studerats tillsammans medintervjuer som utfördes på olika företag för att framställa ett lösningsförslag. Lösningsförslagethar sedan använts i ett implementeringstest i Primonas system för att visa att detfungerar. Studien innehåller även en ekonomisk analys för att fastställa betydelsen av attimplementeringen hanteras och prioriteras.Lösningsförslaget som studien tog fram har gett bevisad effekt i systemet och kan medrelativ lite resurser återanvändas för att säkerställa att en organisation vidtar tillräckligaåtgärder vid införande av GDPR.
Med den nya dataskyddsförordningen (GDPR) i EU ställs det högre krav på hantering avpersonuppgifter och för första gången riskerar företag sanktioner om de inte hanterar personuppgifterkorrekt, vilket medför att alla organisationer måste ta ställning till hur personuppgifterskall hanteras inom organisationen. Inom IT-sektorn måste en analys utföras omvilka data som kommer att påverkas med införandet av GDPR och hur data ska hanteras inuvarande IT-system. Studien har genomförts hos företaget Primona som är placerade iStockholm där de utvecklar lösningar inom inköp och elektronisk handel.Den nya dataskyddsförordningen och relaterade arbeten har studerats tillsammans medintervjuer som utfördes på olika företag för att framställa ett lösningsförslag. Lösningsförslagethar sedan använts i ett implementeringstest i Primonas system för att visa att detfungerar. Studien innehåller även en ekonomisk analys för att fastställa betydelsen av attimplementeringen hanteras och prioriteras.Lösningsförslaget som studien tog fram har gett bevisad effekt i systemet och kan medrelativ lite resurser återanvändas för att säkerställa att en organisation vidtar tillräckligaåtgärder vid införande av GDPR.
APA, Harvard, Vancouver, ISO, and other styles
4

Kidman, Kajsa, and Lisen Axelsson. "GDPR – en "kioskvältare"?" Thesis, Malmö högskola, Fakulteten för teknik och samhälle (TS), 2017. http://urn.kb.se/resolve?urn=urn:nbn:se:mau:diva-20032.

Full text
Abstract:
Denna uppsats är en fallstudie. Studien behandlar den kommande dataskyddsförordningen (GDPR) och dess påverkan på medie- och IKT-företag. Syftet med studien är att studera den befintliga kunskapen kring dataskyddsförordningen inom medie- och IKT-företag samt hur ett förändringsarbete mot förordningen kan drivas. Studien redovisar för dataskyddsförordningen och dess bakgrund följt av en beskrivning kring medieindustrin, IKT-företag och dess komplexa struktur. Vidare beskrivs organisationsförändringar och metoder för dessa vilka kan underlätta ett förändringsarbete. Med hjälp av en enkätundersökning har författarna undersökt om dataskyddsförordningen har uppmärksammats inom 50 medie- och IKT-företag samt om ett förändringsarbete har planerats eller påbörjats. Vidare har studien kompletterats med kvalitativa intervjuer där dataskyddsförordningen i förhållande till tre medieföretag samt ett IKT-företag har analyserats mer ingående. Resultatet av undersökningarna visar hur en stor andel medieföretag i nuläget inte har påbörjat anpassningen mot dataskyddsförordningen. De studerade organisationerna vittnar även om en okunskap i förhållande till det behandlade ämnet och ett anpassningsarbete har i majoriteten av de studerade fallen ej påbörjats. Studien lyfter därför förändringsmodeller vilka kan ge struktur åt ett kommande anpassningsarbete.
This essay is a case study. The study addresses the forthcoming General Data Protection Regulation (GDPR) and its impact on media-and ICT-companies. The purpose of the study is to examine the existing knowledge of the data protection regulation within media and ICT-companies. The study also aims to create an understanding of how an adaption can be carried out against the regulation. The study accounts for the GDPR and its background, followed by a description of the media industry, ICT-companies and its complex structure. Furthermore, organizational changes and methods are described in order to facilitate and provide an overall structure for the change work. By means of a survey, the authors examined whether the GDPR has been noted in 50 media and ICT-companies and if a change work has been planned or begun. Furthermore, the study has been supplemented with qualitative interviews where the GDPR in relation to three media companies and one ICT-company has been analyzed in more detail. The results of the survey show how a large proportion of media companies have not yet begun the adaptation or change work to meet the requirements in the GDPR. The studied organizations also testify to an ignorance in relation to the subject and an adaptation work has not begun in the majority of the studied companies. The study therefore raises change models that can provide an overall structure for future change work to GDPR.
APA, Harvard, Vancouver, ISO, and other styles
5

Åhlström, Riklund Josefin. "GDPR och automatiserade beslut : En rättslig analys av artikel 22 GDPR." Thesis, Uppsala universitet, Juridiska institutionen, 2020. http://urn.kb.se/resolve?urn=urn:nbn:se:uu:diva-416154.

Full text
APA, Harvard, Vancouver, ISO, and other styles
6

Olsson, Olle. "Challenges with the GDPR: A Software Developing Organization’s Guide to GDPR Compliance." Thesis, Malmö universitet, Fakulteten för teknik och samhälle (TS), 2019. http://urn.kb.se/resolve?urn=urn:nbn:se:mau:diva-20388.

Full text
Abstract:
Den 25 maj 2018 trädde den nya dataskyddsförordningen, GDPR, i kraft. GDPR kräver att organisationer och företag, som behandlar persondata, att anpassa sig och andra sina system och produkter för att uppfylla kraven som förordningen ställer. Om organisationer och företag, som faller under förordningen, inte kan uppfylla dem kraven som förordningen ställer måste administrativa böter betalas, vilket kan orsaka att dessa organisationer och företag går i konkurs. Beträffande den praktiska implementeringen av GDPR inom mjukvaruutvecklande företag, är lite forskning som gjorts på det området. Den praktiska implementeringen av GDPR i mjukvaruutvecklande företag är också sällan diskuterat. Syftet med denna studie är att förstå; hur mjukvaruutvecklande företag implementerade GDPR i deras verksamheter; hur dem arbetar med GDPR i dagsläget; och hur dem kommer att arbeta med GDPR i framtiden. Litteraturstudien presenterar dem utmaningar under regleringen som tidigare forskning identifierat och presenterar även hur dem juridiska kraven som GDPR ställer översätts till tekniska lösningar; vilka mjukvaruutvecklande företag behöver implementera för att bli kompatibla med GDPR. Genom kvalitativ forskningsmetod går denna uppsats in i djupet på hur GDPR implementerades i mjukvaruutvecklande företag. Elva respondenter från sex olika företag av tre olika storlekar intervjuades genom semi-strukturerade intervjuer. Intervjufrågorna var baserade på faktorer som är relevanta för denna studie. Det empiriska materialet var sedan sammanställt, analyserat och jämfördes med insamlad litteratur som används i litteraturstudien. Det empiriska materialet visade att omfattningen av implementeringen av GDPR i mjukvaruutvecklande företag inte är beroende på storleken på organisationerna, men snarare beroende på vad för personlig data som bearbetas. Upptäckterna från denna studie kommer fungera som en guide till GDPR kompatibilitet för mjukvaruutvecklande företag som presenteras i slutsatsen. Denna studie har identifierat följande principer att vara essentiella för mjukvaruutvecklande företag att bli GDPR kompatibla. Mjukvaruutvecklare måste nu försäkra: förståelse över vad GDPR betyder för just deras verksamhet, skapa förståelse och medvetenhet om GDPR inom hela organisationen, genomsynlighet i förhållande till organisationens kunder och användare, att persondata lokaliseras och kartläggs i befintliga system and applikationer, att data minimeras under principerna som GDPR tillhandahåller, att persondata krypteras, att principen privacy by design & default följs under all mjukvaruutveckling, rådgivning inom GDPR, att dagliga protokoll följs och att dessa följs upp.
The General Data Protection Regulation came into force on the 25th of may 2018. The GDPR requires organizations and companies, who process personal data, to adjust and change their existing systems in order to meet the requirements that the GDPR puts forward. If organizations and companies fail to comply with the regulation, administrative fines and penalties will be enforced which can lead to bankruptcy for these organizations and companies. There is a lack of research made on the practical implementation of the GDPR into software developing companies and is rarely discussed. Thus, the purpose of this thesis is to understand how the GDPR was implemented into software developing companies; how software developing companies work with the GDPR today; and how software developing companies will work with the GDPR in the future. The literature review presents the challenges of the regulation that previous research has brought forward and how the legal requirements translates into technical solutions, which software developing companies need to implement in order to become compliant with the regulation. Through a qualitative research method, this thesis investigates the depth of how the GDPR was implemented into software developing companies. Eleven respondents representing six different organizations of three different sizes, was interviewed through semi-structured interviews. The interview questions was based on key factors brought forward in the literature review chapter; which are of relevance for this thesis. The empirical evidence was then summarized, analysed and compared to the used literature. The empirical evidence showed that the extent of the implementation of GDPR into software developing companies was not depending on the size of the organization, but rather depending on what personal data is being processed. The findings in this study will serve as a software developers guide to GDPR compliance which is presented in the conclusion. This study has identified the following principles to be essential for software developing companies in order to become GDPR compliant: understanding what the GDPR means for their business, awareness within their organization, transparency, locating personal data, data minimization, encryption of data, privacy by design & default, GDPR guidance, daily GDPR protocols and follow up on previous implementations.
APA, Harvard, Vancouver, ISO, and other styles
7

Fagerlund, Martin. "GDPR och Framtidssäkrade Webbapplikationer." Thesis, Blekinge Tekniska Högskola, Institutionen för programvaruteknik, 2018. http://urn.kb.se/resolve?urn=urn:nbn:se:bth-16181.

Full text
APA, Harvard, Vancouver, ISO, and other styles
8

Petersson, Simon, and Oscar Rehn. "GDPR - Plötsligt händer det." Thesis, Malmö universitet, Fakulteten för teknik och samhälle (TS), 2018. http://urn.kb.se/resolve?urn=urn:nbn:se:mau:diva-20331.

Full text
Abstract:
This essay is a comparative study of nine Swedish organizations. The purpose was to examine how nine Swedish organizations has prepared for the forthcoming General Data Protection Regulation (GDPR) which will replace the national PUL directive from 1998, on the 25th of May 2018. The new regulation implies higher demands on how organizations within EU handle personal data. Earlier studies has discovered that there is general a lack of awareness and preparations among organizations. With that in mind this study was created to examine if the organizations were more aware and prepared now that GDPR soon will go live.  
This study uses John P Kotters eight step model to describe the organizations different ways to approach GDPR as an organizational change project.The study was conducted by semi-structured interviews with nine different organizations. The result of the interviews were used to create themes based on Kotters model, that were used to analyze the empirical result. As a summary the study concluded that eight of nine examined organizations suggested that they were prepared for GDPR. The main differences in the organizations preparations for GDPR was due to difficulties in interpreting the law, which lead up to variations in terms of the scope of the GDPR-project
APA, Harvard, Vancouver, ISO, and other styles
9

Gustavsson, Jenny, and Julia Bengtsson. "Införandet av GDPR ( SFS 2018:218) i förskolan Technoapati - En konsekvens av GDPR." Thesis, Malmö universitet, Fakulteten för lärande och samhälle (LS), 2020. http://urn.kb.se/resolve?urn=urn:nbn:se:mau:diva-36188.

Full text
Abstract:
I denna kvalitativa studie har GDPR-lagens införande i- och påverkan på förskolan studerats. Vi har utgått från en frågeställning, och sett på denna utifrån olika perspektiv. Det första fokuset i studien ligger på hur förskolorna har valt att implementera lagen i deras verksamhet. Med detta menas om personalen fått utbildning och/eller bara information om lagen. Samtidigt har vi belyst förskollärarnas reaktioner till lagen och vilken betydelse detta utgör för det fortsatta arbetet. Det andra fokuset är hur förskolepersonalen behövt ändra sitt arbetssätt efter införandet av GDPR. Här har vi valt att diskutera element såsom samverkan, digitalisering, dokumentation och yrkesroll. I resultatet framgår det skilda meningar om vad GDPR-lagen skapat för konsekvenser, både gällande yrkesrollen och även den generella förståelsen för lagen. Empirin, som samlats in med hjälp av sex stycken intervjuer, analyseras i resultatdelen med hjälp av olika teorier. Dessa utgår ifrån organisationskultur, ledarskap, yrkesprofession, förändringsprocesser och inlärningsteorier, samt kommunikation. I studiens diskussionsdel kommer begreppen technostress och technoapati ställas i relation till varandra, samt till förskolan som den ser ut idag.
APA, Harvard, Vancouver, ISO, and other styles
10

Stafilidis, Dennis, and Ludwig Sjögren. "GDPR - Så påverkas detaljhandelns datahantering : en studie av hur GDPR påverkat detaljhandelns datahantering." Thesis, Högskolan i Halmstad, Akademin för informationsteknologi, 2019. http://urn.kb.se/resolve?urn=urn:nbn:se:hh:diva-39638.

Full text
Abstract:
Digitaliseringens framfart har inneburit att användningen av Big Data-analyser har ökat. I takt med digitaliseringens framfart har kraven på datasäkerhet och skydd av personlig integritet ökat. GDPR trädde i kraft 2018 och ställer hårdare krav på hantering av personuppgifter och kunddata. GDPR syftar till att skydda människors integritet och personuppgifter. En av de branscher som hanterar stora mängder data och använder sig av Big Data-analyser för att nå insikter om sina kunder är detaljhandeln. Men för att användningen av Big Data-analyser skall nå sin fulla potential måste den användas upprepade gånger för olika ändamål, medan GDPR föreskriver att kunddata inte får användas för olika syften och ändamål. Syftet med studien är att undersöka och beskriva hur detaljhandelsföretag anpassar sin datahantering till de krav som GDPR ställer. För att undersöka frågeställningen har vi använt oss av en kvalitativ ansats. Vid insamlingen av data har vi genomfört intervjuer, vilka sedan har analyserats genom en tematisk analys. Resultatet i vår studie visar att GDPR har påverkat detaljhandelns hantering av kunddata. Insamlingen har påverkats genom att den blivit mer strikt och genom att inköp av extern kunddata har upphört. Analys av kunddata har påverkats genom ytterligare steg i processen vid behandling samt genom en restriktivare tillgång till databaser och data som används för analys. Aggregering av kunddata har förändrats genom att datakällorna som används har förändrats. Lagringen av kunddata har förändrats då en integrationslösning har skapats som möjliggör radering av lagrad kunddata i olika databaser.
APA, Harvard, Vancouver, ISO, and other styles
More sources

Books on the topic "The GDPR"

1

Taal, Amie. The GDPR Challenge. New York: CRC Press, 2021. http://dx.doi.org/10.1201/9780429325939.

Full text
APA, Harvard, Vancouver, ISO, and other styles
2

Slokenberga, Santa, Olga Tzortzatou, and Jane Reichel, eds. GDPR and Biobanking. Cham: Springer International Publishing, 2021. http://dx.doi.org/10.1007/978-3-030-49388-2.

Full text
APA, Harvard, Vancouver, ISO, and other styles
3

Voigt, Paul, and Axel von dem Bussche. The EU General Data Protection Regulation (GDPR). Cham: Springer International Publishing, 2017. http://dx.doi.org/10.1007/978-3-319-57959-7.

Full text
APA, Harvard, Vancouver, ISO, and other styles
4

EU GDPR Compliance Compact : GDPR Checklist and GDPR Introduction for Websites and Bloggers: GDPR Handbook with GDPR Templates. Data Protection Regulation 2018 for Beginners. GDPR Concisely Explained. Independently Published, 2018.

Find full text
APA, Harvard, Vancouver, ISO, and other styles
5

Taal, Amie. Gdpr Challenge. Taylor & Francis Group, 2021.

Find full text
APA, Harvard, Vancouver, ISO, and other styles
6

McLaughlin, Kieran. GDPR Training Manual. Independently Published, 2019.

Find full text
APA, Harvard, Vancouver, ISO, and other styles
7

Dibble, Suzanne. GDPR for Dummies. Wiley & Sons, Incorporated, John, 2019.

Find full text
APA, Harvard, Vancouver, ISO, and other styles
8

McLaughlin, Kieran. Essential GDPR Seven. Independently Published, 2019.

Find full text
APA, Harvard, Vancouver, ISO, and other styles
9

McLaughlin, Kieran. GDPR Training Seminar. Independently Published, 2019.

Find full text
APA, Harvard, Vancouver, ISO, and other styles
10

McLaughlin, Kieran. Auditing GDPR Compliance. Independently Published, 2019.

Find full text
APA, Harvard, Vancouver, ISO, and other styles
More sources

Book chapters on the topic "The GDPR"

1

Evans, Ariel. "GDPR Evidence." In Enterprise Cybersecurity in Digital Business, 387–94. London: Routledge, 2022. http://dx.doi.org/10.4324/9781003052616-34.

Full text
APA, Harvard, Vancouver, ISO, and other styles
2

Evans, Ariel. "GDPR Requirements." In Enterprise Cybersecurity in Digital Business, 395–404. London: Routledge, 2022. http://dx.doi.org/10.4324/9781003052616-35.

Full text
APA, Harvard, Vancouver, ISO, and other styles
3

Evans, Ariel. "GDPR Articles." In Enterprise Cybersecurity in Digital Business, 332–86. London: Routledge, 2022. http://dx.doi.org/10.4324/9781003052616-33.

Full text
APA, Harvard, Vancouver, ISO, and other styles
4

Evans, Ariel. "GDPR Overview." In Enterprise Cybersecurity in Digital Business, 321–31. London: Routledge, 2022. http://dx.doi.org/10.4324/9781003052616-32.

Full text
APA, Harvard, Vancouver, ISO, and other styles
5

Arfelt, Emma, David Basin, and Søren Debois. "Monitoring the GDPR." In Lecture Notes in Computer Science, 681–99. Cham: Springer International Publishing, 2019. http://dx.doi.org/10.1007/978-3-030-29959-0_33.

Full text
APA, Harvard, Vancouver, ISO, and other styles
6

Cottrell, Nicholas. "Compliance and GDPR." In MongoDB Topology Design, 75–98. Berkeley, CA: Apress, 2020. http://dx.doi.org/10.1007/978-1-4842-5817-0_4.

Full text
APA, Harvard, Vancouver, ISO, and other styles
7

Gobeo, Antoni, Connor Fowler, and William J. Buchanan. "The GDPR Fundamentals." In GDPR and Cyber Security for Business Information Systems, 3–36. New York: River Publishers, 2022. http://dx.doi.org/10.1201/9781003338253-2.

Full text
APA, Harvard, Vancouver, ISO, and other styles
8

Slokenberga, Santa, Olga Tzortzatou, and Jane Reichel. "Introduction." In GDPR and Biobanking, 1–7. Cham: Springer International Publishing, 2021. http://dx.doi.org/10.1007/978-3-030-49388-2_1.

Full text
Abstract:
AbstractThe General Data Protection Regulation (GDPR) is already four years old legal instrument, with over two years of practical experience, yet, several central questions on its application, its importance in scientific research, rights of the data subjects, and obligations on the controllers and processors remain uncharted. In this edited volume, questions ranging from the meaning of the GDPR provisions for a particular research project to impact of the GDPR on long term collaborations, when the UK is leaving the EU are is discussed. This chapter sets out the aim of this book and provides an overview of how various contributions interplay to shed light on how the GDPR shapes the research regimes on the use of personal data in biobanking by EU Member States.
APA, Harvard, Vancouver, ISO, and other styles
9

Lalova, Teodora, Anastassia Negrouk, Laurent Dollé, Sofie Bekaert, Annelies Debucquoy, Jean-Jacques Derèze, Peggy Valcke, Els J. Kindt, and Isabelle Huys. "An Overview of Belgian Legislation Applicable to Biobank Research and Its Interplay with Data Protection Rules." In GDPR and Biobanking, 187–213. Cham: Springer International Publishing, 2021. http://dx.doi.org/10.1007/978-3-030-49388-2_10.

Full text
Abstract:
AbstractThis contribution aims to present in a clear and concise manner the intricate legal framework for biobank research in Belgium. In Part 1, we describe the Belgian biobank infrastructure, with a focus on the concept of biobank. In Part 2, we provide an overview of the applicable legal framework, namely the Act of 19 December 2008 on Human Body Material (HBM), and its amendments. Attention is given to an essential piece of self-regulation, namely the Compendium on biobanks issued by the Federal Agency on Medicine Products and Health (FAMPH). Furthermore, we delineate the interplay with relevant data protection rules. Part 3 is dedicated to the main research oversight bodies in the field of biobanking. In Part 4, we provides several examples of the ‘law in context’. In particular, we discuss issues pertaining to presumed consent, processing of personal data associated with HBM, and information provided to the donor of HBM. Finally, Part 5 and 6 addresses the impact of the EU General Data Protection Regulation (GDPR), suggests lines for further research, and outline the future possibilities for biobanking in Belgium.
APA, Harvard, Vancouver, ISO, and other styles
10

Hartlev, Mette. "Balancing of Individual Rights and Research Interests in Danish Biobank Regulation." In GDPR and Biobanking, 215–26. Cham: Springer International Publishing, 2021. http://dx.doi.org/10.1007/978-3-030-49388-2_11.

Full text
Abstract:
AbstractDenmark offers very good opportunities for biobank research. There is a vast number of well-structured and comprehensive collections of biological material, which in combination with a ‘research generous’ legislation provides an excellent environment for biobank research. However, both the Danish biobank landscape and the regulatory environment is rather complex. In contrast to a number of other countries, there is no specific biobank act in Denmark. Instead, various regulatory regimes interact, which makes it challenging to navigate in the legal landscape. It is also rather non-transparent for the individuals, from whom samples have been collected, what samples are used for, and how they can influence the use of samples for research. With the GDPR and the Danish Data Protection Act it seems that research participants’ rights have been slightly weakened in Danish law. However, it is argued, that the GDPR has the potential to ensure more awareness of research participants right against the societal and scientific interest in research.
APA, Harvard, Vancouver, ISO, and other styles

Conference papers on the topic "The GDPR"

1

Hallman, Roger A. "Session details: GDPR." In CCS '18: 2018 ACM SIGSAC Conference on Computer and Communications Security. New York, NY, USA: ACM, 2018. http://dx.doi.org/10.1145/3285943.

Full text
APA, Harvard, Vancouver, ISO, and other styles
2

HAVLÍK, JAN, and PETR MOJŽÍŠ. "GDPR Implementation Pitfalls." In System approaches’18. University of Economics, Prague, Nakladatelství Oeconomica, 2018. http://dx.doi.org/10.18267/pr.2018.pav.2247.8.

Full text
APA, Harvard, Vancouver, ISO, and other styles
3

"Session details: GDPR." In the 2nd International Workshop, chair Roger A. Hallman. New York, New York, USA: ACM Press, 2018. http://dx.doi.org/10.1145/3267357.3285943.

Full text
APA, Harvard, Vancouver, ISO, and other styles
4

da Conceicao Freitas, Maria, and Miguel Mira da Silva. "GDPR in SMEs." In 2018 13th Iberian Conference on Information Systems and Technologies (CISTI). IEEE, 2018. http://dx.doi.org/10.23919/cisti.2018.8399272.

Full text
APA, Harvard, Vancouver, ISO, and other styles
5

Bartolini, Cesare, Antonello Calabró, and Eda Marchetti. "GDPR and business processes." In the 2nd International Conference. New York, New York, USA: ACM Press, 2019. http://dx.doi.org/10.1145/3309772.3309779.

Full text
APA, Harvard, Vancouver, ISO, and other styles
6

Furey, Eoghan, and Juanita Blue. "Alexa, Emotions, Privacy and GDPR." In Proceedings of the 32nd International BCS Human Computer Interaction Conference. BCS Learning & Development, 2018. http://dx.doi.org/10.14236/ewic/hci2018.212.

Full text
APA, Harvard, Vancouver, ISO, and other styles
7

Sağlam, Rahime Belen, and Jason R. C. Nurse. "Is your chatbot GDPR compliant?" In CUI '20: 2nd Conference on Conversational User Interfaces. New York, NY, USA: ACM, 2020. http://dx.doi.org/10.1145/3405755.3406131.

Full text
APA, Harvard, Vancouver, ISO, and other styles
8

Horák, Martin, Václav Stupka, and Martin Husák. "GDPR Compliance in Cybersecurity Software." In ARES '19: 14th International Conference on Availability, Reliability and Security. New York, NY, USA: ACM, 2019. http://dx.doi.org/10.1145/3339252.3340516.

Full text
APA, Harvard, Vancouver, ISO, and other styles
9

Freitas, Maria da Conceicao, and Miguel Mira da Silva. "GDPR and Suppliers in SMEs." In 2022 17th Iberian Conference on Information Systems and Technologies (CISTI). IEEE, 2022. http://dx.doi.org/10.23919/cisti54924.2022.9820586.

Full text
APA, Harvard, Vancouver, ISO, and other styles
10

Colcelli, Valentina. "JOINT CONTROLLER AGREEMENT UNDER GDPR." In EU AND MEMBER STATES – LEGAL AND ECONOMIC ISSUES. Faculty of Law, Josip Juraj Strossmayer University of Osijek, 2019. http://dx.doi.org/10.25234/eclic/9043.

Full text
APA, Harvard, Vancouver, ISO, and other styles

Reports on the topic "The GDPR"

1

Janßen, Rebecca, Reinhold Kesler, Michael Kummer, and Joel Waldfogel. GDPR and the Lost Generation of Innovative Apps. Cambridge, MA: National Bureau of Economic Research, May 2022. http://dx.doi.org/10.3386/w30028.

Full text
APA, Harvard, Vancouver, ISO, and other styles
2

Jia, Jian, Ginger Zhe Jin, and Liad Wagman. The Short-Run Effects of GDPR on Technology Venture Investment. Cambridge, MA: National Bureau of Economic Research, November 2018. http://dx.doi.org/10.3386/w25248.

Full text
APA, Harvard, Vancouver, ISO, and other styles
3

Aridor, Guy, Yeon-Koo Che, and Tobias Salz. The Economic Consequences of Data Privacy Regulation: Empirical Evidence from GDPR. Cambridge, MA: National Bureau of Economic Research, March 2020. http://dx.doi.org/10.3386/w26900.

Full text
APA, Harvard, Vancouver, ISO, and other styles
4

Johnson, Garrett. Economic Research on Privacy Regulation: Lessons from the GDPR and Beyond. Cambridge, MA: National Bureau of Economic Research, December 2022. http://dx.doi.org/10.3386/w30705.

Full text
APA, Harvard, Vancouver, ISO, and other styles
5

Vonk, Jaynie. Going Digital: Privacy and data security under GDPR for quantitative impact evaluation. Oxfam, October 2019. http://dx.doi.org/10.21201/2019.5211.

Full text
APA, Harvard, Vancouver, ISO, and other styles
6

Minero Alejandre, Gemma. Ownership of Databases: Personal Data Protection and Intellectual Property Rights on Databases. Universitätsbibliothek J. C. Senckenberg, Frankfurt am Main, 2021. http://dx.doi.org/10.21248/gups.64578.

Full text
Abstract:
When we think on initiatives on access to and reuse of data, we must consider both the European Intellectual Property Law and the General Data Protection Regulation (GDPR). The first one provides a special intellectual property (IP) right – the sui generis right – for those makers that made a substantial investment when creating the database, whether it contains personal or non-personal data. That substantial investment can be made by just one person, but, in many cases, it is the result of the activities of many people and/or some undertakings processing and aggregating data. In the modern digital economy, data are being dubbed the ‘new oil’ and the sui generis right might be con- sidered a right to control any access to the database, thus having an undeniable relevance. Besides, there are still important inconsistences between IP Law and the GDPR, which must be removed by the European legislator. The genuine and free consent of the data subject for the use of his/her data must remain the first step of the legal analysis.
APA, Harvard, Vancouver, ISO, and other styles
7

de Miguel Beriain, Iñigo, Aliuska Duardo Sánchez, and José Antonio Castillo Parrilla. What Can We Do with the Data of Deceased People? A Normative Proposal. Universitätsbibliothek J. C. Senckenberg, Frankfurt am Main, 2021. http://dx.doi.org/10.21248/gups.64580.

Full text
Abstract:
The health and genetic data of deceased people are a particularly important asset in the field of biomedical research. However, in practice, using them is compli- cated, as the legal framework that should regulate their use has not been fully developed yet. The General Data Protection Regulation (GDPR) is not applicable to such data and the Member States have not been able to agree on an alternative regulation. Recently, normative models have been proposed in an attempt to face this issue. The most well- known of these is posthumous medical data donation (PMDD). This proposal supports an opt-in donation system of health data for research purposes. In this article, we argue that PMDD is not a useful model for addressing the issue at hand, as it does not consider that some of these data (the genetic data) may be the personal data of the living relatives of the deceased. Furthermore, we find the reasons supporting an opt-in model less convincing than those that vouch for alternative systems. Indeed, we propose a normative framework that is based on the opt-out system for non-personal data combined with the application of the GDPR to the relatives’ personal data.
APA, Harvard, Vancouver, ISO, and other styles
8

Hulten, Charles, and Leonard Nakamura. Is GDP Becoming Obsolete? The “Beyond GDP” Debate. Cambridge, MA: National Bureau of Economic Research, July 2022. http://dx.doi.org/10.3386/w30196.

Full text
APA, Harvard, Vancouver, ISO, and other styles
9

Hulten, Charles, and Leonard Nakamura. Is GDP Becoming Obsolete? The “Beyond GDP” Debate. Federal Reserve Bank of Philadelphia, October 2022. http://dx.doi.org/10.21799/frbp.wp.2022.37.

Full text
APA, Harvard, Vancouver, ISO, and other styles
10

Clark, Hunter, Maxim Pinkovskiy, and Xavier Sala-i-Martin. China's GDP Growth May be Understated. Cambridge, MA: National Bureau of Economic Research, April 2017. http://dx.doi.org/10.3386/w23323.

Full text
APA, Harvard, Vancouver, ISO, and other styles
You might also be interested in the extended bibliographies on the topic 'The GDPR' for particular source types:
Journal articles Dissertations / Theses Books
We offer discounts on all premium plans for authors whose works are included in thematic literature selections. Contact us to get a unique promo code!

To the bibliography