English Corner

18. Januar 2019 - Processing of medical data

Data processing in a doctor’s practice

Data processing doctor's practice
Image: metamorworks / iStock / Getty Images

Health data are subject to the requirements applicable to special categories of data. That fact alone has given rise to questions that have not yet been fully answered. Doctors‘ practices and other healthcare professions now receive information from various data protection supervisory authorities to support them.

17. Januar 2019 - Data protection concept according to GDPR

A step-by-step guide to coming up with an erasure concept

Erasure concept
Image: Andranik Hakobyan / iStock / Getty Images

The General Data Protection Regulation (GDPR) and the new German Federal Data Protection Act (BDSG-neu) make stipulations on the erasure of personal data. It is therefore advisable to develop and implement an erasure concept. The DIN 66398 standard provides support here.

17. Dezember 2018 - Fundamental approaches for implementing the GDPR

Basic data protection: a must

Basic data protection
Image: Devenorr / iStock / Getty Images

Just a handful of specific legal questions left to clarify in detail, then the responsible people will have fully implemented the General Data Protection Regulation (GDPR)? Unlikely. Here we set out the minimum requirements for implementation of the GDPR from the point of view of a supervisory authority.

3. Juli 2018 - Online recruiting platforms

Handling of applicant data: data protection in e-recruiting

E-Recruiting geht auch datenschutzkonform
Image: NicoElNino / iStock / Thinkstock

The digitization of industry and public sector also includes the process of recruiting new employees. Applicant data is increasingly reaching the HR department via e-recruiting platforms. What does this mean for data protection?

28. Juni 2018 - Data protection training

Increasing data protection awareness within the company

Neue Wege gehen, um
Image: monsitj / iStock / Thinkstock

There is no purely technical solution for safeguarding against the never-ending stream of new data risks. According to psychologists, IT users are increasingly relying on technical safeguards and are becoming careless as a result. Businesses should therefore ensure greater data protection awareness in the workplace.

25. Juni 2018 - Annual report and planning

How to create your data protection plan

Ohne Datenschutz-Planung kein roter Faden
Image: iStock.com / koo_mikko

What’s in the „Outlook“ section of your current data protection report? Implementation of the General Data Protection Regulation (GDPR)? It should actually be a little more detailed. This is the time to think about your data protection plan.

25. Juni 2018 - Importance and implementation

General Data Protection Regulation: data accuracy in practice

Was ist unter Datenrichtigkeit genau zu verstehen?

Data accuracy is one of the central principles of data processing in the General Data Protection Regulation (GDPR). The principle is not new. However, as the new legislation takes effect, it has now become more important than ever. This is because violations are subject to fines. What does data accuracy specifically entail?

30. April 2018 - The human security risk

Social Engineering: How users are “hacked”

Social Engineering: neue Studie
Image: frankpeters / iStock / Thinkstock

What are the most successful Social Engineering methods of data thieves? New studies provide insight. Use these insights in your data protection seminars to prevent people from becoming the number one hacking target.

23. April 2018 - Data processing on behalf of the controller

Managed Security Services: here’s what you need to consider

Managed-Security-Services: Auch ein Datenschutz-Thema
Image: iStock.com / LeoWolfert

IT risks are becoming increasingly complex and qualified employees are hard to find. As a result, not only small and medium businesses are thinking about outsourcing their IT security. However, using what is known as Managed Security Services only outsources the tasks, not the overall responsibility. Continue reading to learn, what you, as a data protection officer, should look out for when your company plans to outsource its IT security to third parties.