Guide to the GDPR is a comprehensive practical description of duties of businesses and other organisations resulting from the GDPR, providing examples of application, explaining practical implications and relations between particular provisions of the GDPR, and attempting to solve internal conflicts between particular requirements of the GDPR. To execute and guarantee the right to privacy and data protection within the European Union (EU), the EU found it necessary to establish a stable, consistent framework for personal data protection and to enforce it in a decisive manner. This book, the most comprehensive guide available to the GDPR, is the first English edition, updated and expanded, of a bestselling book on GDPR Guide to the GDPR published in Poland in 2018.
What’s in this book:
The implications of major innovations of the new system – including the obligation of businesses to consult the GDPR first rather than relevant Member State legislation and the extension of the GDPR to companies located outside of the European Economic Area – are fully analysed for the benefit of lawyers and companies worldwide. Among the specific issues and topics covered are the following:
insight into the tricky nature of the GDPR;
rules relating to free movement of personal data;
legal remedies, liability, administrative sanctions;
how to prove compliance with GDPR;
direct liability of subcontractors (sub-processors);
managing incidents and reporting data breaches;
information on when and under what conditions the GDPR rules may apply to non-EU parties;
backups and encryption;
how to assess risk and adjust security accordingly and document the process;
guidelines of the European Data Protection Board; and
the GDPR’s digest for obligated parties in the form of a draft data protection policy.
This guide often breaks down GDPR articles into checklists of specific requirements. Of special value are the numerous ready-to-adapt template compliance documents presented in Part II.
How this will help you:
Being the only book on the market approaching GDPR from the systemic and practical perspective in such detail, this book provides a thorough explanation of all GDPR obligations and related liability relying on private and other obliged organisations. This book is an indispensable practical resource for corporate data protection officers, in-house counsel, lawyers in data protection practice, and e-commerce start-ups worldwide, guiding on how to comply with GDPR obligations.