This guidance is intended to assist the users of these recording devices in determining whether they are a ‘controller’ with obligations under data protection law, or whether their actions fall within the personal or household exemption.
The draft recommendation is addressed to private and public bodies as soon as they carry out the read and/or write operations on a user’s terminal referred to in Article 82 of the French Data Protection Act. The recommendation is not intended to be prescriptive. Its main purpose is to provide practical recommendations on how to operationally translate legal requirements […]
Guidelines establish requirements for credit institutions, investment firms and payment service providers (PSPs) on the mitigation and management of their information and communication technology (ICT) and security risks and aim to ensure a consistent and robust approach across the Single market.