English Corner

Gratis
30. April 2018 - The human security risk

Social Engineering: How users are “hacked”

Social Engineering: neue Studie
Image: frankpeters / iStock / Thinkstock

What are the most successful Social Engineering methods of data thieves? New studies provide insight. Use these insights in your data protection seminars to prevent people from becoming the number one hacking target.

weiterlesen
Gratis
23. April 2018 - Data processing on behalf of the controller

Managed Security Services: here’s what you need to consider

Managed-Security-Services: Auch ein Datenschutz-Thema
Image: iStock.com / LeoWolfert

IT risks are becoming increasingly complex and qualified employees are hard to find. As a result, not only small and medium businesses are thinking about outsourcing their IT security. However, using what is known as Managed Security Services only outsources the tasks, not the overall responsibility. Continue reading to learn, what you, as a data protection officer, should look out for when your company plans to outsource its IT security to third parties.

weiterlesen
Gratis
23. April 2018 - New role of DPOs

Leadership skills for data protection officers

Die Anforderungen an den DSB ändern sich mit der DSGVO
Image: phototechno / Thinkstock

The General Data Protection Regulation changes the role of the data protection officer (DPO) in companies and government agencies: They are acting more at eye level with the management and the technical departments. This requires strong leadership skills and a particular style of leading: technical guidance without disciplinary authority.

weiterlesen
Gratis
20. April 2018 - GDPR & CCTV

CCTV and the GDPR: the correct storage period

Das BGH-Urteil zur Videoüberwachung im Betrieb fasst wichtige Punkte zusammen
Image: Balefire9 / iStock /Thinkstock

Video surveillance of public spaces and in companies is increasing. For good reason, the General Data Protection Regulation requires a data protection impact assessment before implementing any broad surveillance of public spaces. This includes a review of the planned storage period.

weiterlesen
Gratis
6. April 2018 - GDPR & IT security

GDPR: Requirements for backups

Auch unter der DSGVO darf die Datensicherung keine Lücken aufweisen
Image: iStock.com / cnythzl

The General Data Protection Regulation (GDPR) requires a quick restoration of personal data after a physical or technical incident so that availability and access are ensured. At the same time, the principle of storage limitation applies. Read here how backup concepts may accommodate all these factors.

weiterlesen
Gratis
25. Januar 2018 - Recommendations by supervisory authorities

GDPR: The record of processing activities

Weiterhin zentral: eine Dokumentation der Verfahren
image: iStock.com / triloks

The General Data Protection Regulation replaces the familiar “obligatory registration” with a “record of processing activities”. What changes, what stays the same? What do supervisory authorities recommend?

weiterlesen
Gratis
25. Januar 2018 - Series: Tools for the GDPR

Tools for data protection impact assessment

Tools für die Datenschutz-Folgenabschätzung
image: olm26250 / iStock / Thinkstock

Software tools alone are insufficient to ensure the implementation of the General Data Protection Regulation (GDPR). However, they can certainly help. In our new series, we are introducing a variety of tools. We’ll start with tools and processes to aid in risk evaluation.

weiterlesen
Gratis
25. Januar 2018 - Key data protection terms

What is personal data?

Was genau sind personenbezogene Daten?
image: iStock.com / peterhowell

Personal data is a key concept in data protection. Data protection laws only apply if the data relates to a person. If data cannot be attributed to a person, then data protection rules do not need to be considered.

weiterlesen
Gratis
25. Januar 2018 - Series: Tools for the GDPR

How to test the resilience of IT systems

DSGVO: Wie lässt sich die Belastbarkeit von IT-Systemen kontrollieren?
image: solarseven / iStock / Thinkstock

Resilience is a new requirement of the General Data Protection Regulation (GDPR) for security in data processing. However, how can resilience be tested? Tools may help.

weiterlesen