What is normally missing in Data Protection Impact Assessments? Will the Whistleblower Directive and the Collective Redress Directive result in a new wave of GDPR enforcement actions?
Our guest:
Brendan Quinn (Esq.) is a qualified Irish Solicitor, New York Attorney, and Fellow of the Chartered Certified Accountants (FCCA), holding an LL.M from University College Dublin and Higher Diplomas in Computer Science and Data Analytics, as well as a postgraduate in Financial Technology. He is also the author of Data Protection Implementation Guide: A Legal, Risk and Technology Framework for the GDPR (Wolters Kluwer, September 2021).
Among other things, our guest helps innovative software companies in their compliance with Privacy by Design and data security requirements, including data anonymization research and DPIAs.
We cover, in order:
- Things that tend to be missing in Data Protection Impact Assessments (DPIA)
- New avenues for GDPR enforcement stemming from the Whistleblower Directive and the Collective Redress Directive
- Interplay between the GDPR and data protection provisions contained in the new Digital Services Act and Digital Markets Act.
References:
- Data Protection Implementation Guide: Discount code for 25% off on the Wolters Kluwer website (valid until December 31st 2022): 25EOY2022
- Brendan Quinn on LinkedIn
- EU Whistleblower Directive
- EU Collective Redress Directive
- Ireland could face huge damage claims for cyber attack on its health service