This cartoon depicts the challenges of complying with GDPR’s requirements for vendor management. Under the GDPR, there are serious responsibilities when using a vendor to process personal data. Broadly, there are three things that data controllers must do: 1. Data controllers must perform due diligence in selecting vendors and that are complaint with GDPR. […]
Category: Vendor Management
Posts about Vendor Management by Professor Daniel J. Solove for his blog at TeachPrivacy, a privacy awareness and security training company.
Outsourcing Our Data
A growing data privacy issue is the outsourcing of personal data. Increasingly, US companies are outsourcing data processing to other countries. Although the United States lags much of the world in data protection, our personal information is being sent overseas to many countries that lack the same level of privacy protections as the United States. […]