AP starts sample to check compliance with privacy rules




by large organizations
Dutch privacy watchdog, the Dutch Data Protection Authority, has started an exploratory investigation in which the organization examines the extent to which large organizations comply with the new general data protection regulation.

It is specifically a random sample of thirty unspecified large organizations from ten different private sectors. They are checked to see whether they keep a register of processing activities and whether it contains correct information. If that is the case, the privacy watchdog sees this as a first indication that the organization is taking the privacy rules from the AVG seriously. It is not yet clear when the investigation must be completed.

The Dutch Data Protection Authority does not say which organizations are involved, but that the organizations are spread throughout the Netherlands. It concerns organizations from ten sectors: industry and metal, water supply companies, construction, trade, catering, travel organizations, communication, financial services, business services and care.

As part of the rules of European privacy legislation introduced on May 25, organizations must in certain cases keep a register and register processing of personal data therein. This register must include information about the personal data and the purpose for which the data are processed.

Such a register is mandatory for every organization with more than 250 employees. However, smaller organizations are also obliged to do this if they structurally process data or process data with a high risk for the rights of the persons involved. Even if a small organization processes data about a person’s religion or health, so-called special personal data, this register is mandatory.


In: A Technology & Gadgets Asked By: [23254 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »