MC
Uploaded byMathew Chacko
PPTX, PDF169 views

Transparency gdpr

This document provides an introduction to transparency under the GDPR. It discusses the overarching obligation of transparency that applies throughout the entire data processing period. It outlines the requirements for providing information to data subjects under Articles 13 and 14, including what information must be provided, when it must be provided, and exceptions. The information must be concise, transparent, intelligible, easily accessible, and in clear plain language. Privacy statements are recommended to communicate this information to data subjects.

Law
Download to read offline
TRANSPARENCY: GDPR BASICS SPICE ROUTE LEGAL 14 MAY 2018
AN INTRODUCTION TO TRANSPARENCY  No definition under the GDPR.  It is an overarching obligation that applies irrespective of the legal basis for processing and through the entire processing period.
PROVIDING DATA SUBJECTSWITH INFORMATION RELATINGTO FAIR PROCESSING COMMUNICATING WITH DATA SUBJECTS IN RELATIONTOTHEIR RIGHTS FACILITATINGTHE EXERCISE BY DATA SUBJECTS OFTHEIR RIGHTS APPLICATION
ELEMENTS ARTICLE 12 ARTICLE 13-14 ARTICLE 15-22 ARTICLE 34 PROVISIONOF INFORMATIONTO DATA SUBJECTS COMMUNICATIONS IN RELATIONTO DATA BREACHES COMMUNICATIONS CONCERNING RIGHTS OF DATA SUBJECTS
ARTICE 13  Article 13 – Information to be provided when data is collected from the data subject.This includes personal personal data when:  A data subject consciously provides information to the data controller;  A data controller collects data from a data subject by observation.
ARTICE 14  Article 14 – Information to be provided when data has not been obtained from the data subject. This includes personal data that has been obtained from sources such as:  Third party data controllers;  Data brokers;  Publicly available sources.
ELEMENTS ARTICLE 12 Information must comply with the following requirements  Concise, transparent, intelligible, and easily accessible;  Clear and plain language;  Must be in writing or by other means;  When requested by a data subject, it should be provided orally;  Should be provided free of charge, with a few exceptions (i.e., when requests are “manifestly unfounded or excessive”).
ELEMENTS ARTICLE 12 CONCISE, TRANSPARENT, INTELLIGIBLE, AND EASILY ACCESSIBLE  Information should be communicated efficiently, should avoid information fatigue, and should be differentiated from other non- privacy related information.  It should be understood by an average member of the intended audience & is closely linked to clear and plain language.  The data subject should not have to seek out information and should not be more than 2 taps away (for example: the use of contextual pop-ups when filling out forms or though the use of layered privacy statements).
ELEMENTS ARTICLE 12 CLEARAND PLAIN LANGUAGE  GOOD: We will retain your shopping history and use details of the products you have purchased to make suggestions for other products which we believe you will be interested in.  BAD: We may use your personal information to develop a new service.  Indefinite language - “may”, “might”, “possible”, etc. - should be avoided.
ELEMENTS ARTICLE 12 INWRITINGOR BY OTHER MEANS
ELEMENTS ARTICLE 12 FREE OF CHARGE
INFORMATION TO BE PROVIDED CONTENT
INFORMATION TO BE PROVIDED  Use privacy statements (or notices or policies) or fair processing notices .  The data controller should take appropriate measures in relation to the provision of information for transparency. This means gauging the situation to decide the best way to communicate information.  Test different methods.
WHENSHOULD INFORMATION BE PROVIDED?  Article 13 – at the time when personal data is collected.  Article 14 or indirectly obtained personal data – within a reasonable period after obtaining the data, and no later than one month, having regard to the circumstances.  If data is used for communication with the data subject, information should be provided at the latest at the time of first communication.  If data is being disclosed to a third party, information should be provided at the latest at the time of first disclosure.
EXCEPTIONSTO PROVIDING INFORMATION  Article 13 – in the event the data subject already has this information. Data controllers will need to demonstrate and document what information the data subject already has, how and when it was received, and that no changes have occurred to the information to make it out of date.
EXCEPTIONSTO PROVIDING INFORMATION Article 14  Provision of information would prove impossible, would involve a disproportionate effect, would make the objectives of the processing impossible, or seriously impair them.  Data controller is subject to national / EU law to obtain and disclose the personal data and the law provides appropriate protections for data subject’s legitimate interests.  Secrecy obligations
THANK YOU Should you have any questions or comments, please get in touch with aadya.misra@spiceroutelegal.com or mathew@spiceroutelegal.com !

More Related Content

PPTX
Privacy and Data Protection Act 2014 (VIC)
byRussell_Kennedy
 
PPTX
Revision of Legal issues for Unit 11.pptx
byBreach_P
 
DOCX
General data protection regulation - European union
byRohana K Amarakoon
 
PPT
Data Privacy in India and data theft
byAmber Gupta
 
PPTX
Things to know about GDPR in 2018
byWebkul Software Pvt. Ltd.
 
PPTX
GDPR - A Concise Treatise
byDevopam Mittra
 
PDF
2014-04-16 Protection of Personal Information Act Readiness Workshop
byPaul Jacobson
 
PDF
GDPR presentation
bySamantha Deeks
 
Privacy and Data Protection Act 2014 (VIC)
byRussell_Kennedy
 
Revision of Legal issues for Unit 11.pptx
byBreach_P
 
General data protection regulation - European union
byRohana K Amarakoon
 
Data Privacy in India and data theft
byAmber Gupta
 
Things to know about GDPR in 2018
byWebkul Software Pvt. Ltd.
 
GDPR - A Concise Treatise
byDevopam Mittra
 
2014-04-16 Protection of Personal Information Act Readiness Workshop
byPaul Jacobson
 
GDPR presentation
bySamantha Deeks
 

What's hot

PPT
Personal Data Protection in Malaysia
byMSC Malaysia Cybercentre @ Bangsar South City
 
PPTX
Data Privacy Act in the Philippines
byShirley Ingles-Cruz
 
PPT
Data protection in_india
byAltacit Global
 
PDF
The principles of the Data Protection Act in detail - uk
by- Mark - Fullbright
 
PPTX
GDPR Benefits and a Technical Overview
byErnest Staats
 
PPTX
Popi act presentation
byKholisile Mazaza
 
PDF
Werksmans presentations on popi
byWerksmans Attorneys
 
PPTX
Applying the Personal Data Protection Act (Singapore)
byBenjamin Ang
 
PPTX
Data protection ppt
bygrahamwell
 
PPTX
Protection of Personal Information
byFrancois Naude Jr.
 
PDF
The Data Protection Act What You Need To Know
byEamonnORagh
 
PDF
Privacy and Data Protection in South Africa
byblogzilla
 
PPTX
A quick look at gdpr
byCookieYes
 
PPT
Safety And Security Of Data 4
byWynthorpe
 
PDF
Saying "I Don't": the requirement of data subject consent for purposes of dat...
byWerksmans Attorneys
 
PPTX
The Data Protection Act
bySaimaRafiq
 
ODT
Data protectionpolicyliec
byvrishi31
 
PDF
Personal data protection bill
byMathew Chacko
 
Personal Data Protection in Malaysia
byMSC Malaysia Cybercentre @ Bangsar South City
 
Data Privacy Act in the Philippines
byShirley Ingles-Cruz
 
Data protection in_india
byAltacit Global
 
The principles of the Data Protection Act in detail - uk
by- Mark - Fullbright
 
GDPR Benefits and a Technical Overview
byErnest Staats
 
Popi act presentation
byKholisile Mazaza
 
Werksmans presentations on popi
byWerksmans Attorneys
 
Applying the Personal Data Protection Act (Singapore)
byBenjamin Ang
 
Data protection ppt
bygrahamwell
 
Protection of Personal Information
byFrancois Naude Jr.
 
The Data Protection Act What You Need To Know
byEamonnORagh
 
Privacy and Data Protection in South Africa
byblogzilla
 
A quick look at gdpr
byCookieYes
 
Safety And Security Of Data 4
byWynthorpe
 
Saying "I Don't": the requirement of data subject consent for purposes of dat...
byWerksmans Attorneys
 
The Data Protection Act
bySaimaRafiq
 
Data protectionpolicyliec
byvrishi31
 
Personal data protection bill
byMathew Chacko
 

Similar to Transparency gdpr

PPTX
GDPR Introduction and overview
byJane Lambert
 
PPTX
My presentation- Ala about privacy and GDPR
byzayadeen2003
 
PPTX
Presentation on GDPR
byDipanjanDey12
 
PDF
GDPR for Dummies
byCaroline Boscher
 
PDF
On GDPR - Regulation on Personal Data Protection
byAldo939112
 
PDF
Introduction to EU General Data Protection Regulation: Planning, Implementati...
byFinancial Poise
 
PPTX
Introduction to GDPR
byPriyab Satoshi
 
PDF
GDPR: how IT works
byMorris Dorfer
 
PDF
UX & GDPR - Building Customer Trust with your Digital Experiences
byUser Vision
 
PDF
pr Privacy Principles 230405 small.pdf
byAndrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
PDF
EU GDPR and you: requirements for marketing
byIT Governance Ltd
 
PDF
GDPR 11/1/2017
byisc2-hellenic
 
PDF
Key Issues on the new General Data Protection Regulation
byOlivier Vandeputte
 
PDF
GDPR 101
byAnubhav Dhiman
 
PDF
Esc gdpr oct 2018
byProf. Jacques Folon (Ph.D)
 
PPTX
GDPR Breakfast Briefing for Business Advisors
byHarrison Clark Rickerbys
 
PDF
Engage 2018: GDPR Three Days To Go
bypanagenda
 
PDF
UX & GDPR - Building Customer Trust with your Digital Experiences
byStephen Denning
 
PPTX
Changing legislation – General Data Protection Regulation (GDPR) and librarie...
byCILIPScotland
 
PDF
Digital law and GDPR
byProf. Jacques Folon (Ph.D)
 
GDPR Introduction and overview
byJane Lambert
 
My presentation- Ala about privacy and GDPR
byzayadeen2003
 
Presentation on GDPR
byDipanjanDey12
 
GDPR for Dummies
byCaroline Boscher
 
On GDPR - Regulation on Personal Data Protection
byAldo939112
 
Introduction to EU General Data Protection Regulation: Planning, Implementati...
byFinancial Poise
 
Introduction to GDPR
byPriyab Satoshi
 
GDPR: how IT works
byMorris Dorfer
 
UX & GDPR - Building Customer Trust with your Digital Experiences
byUser Vision
 
pr Privacy Principles 230405 small.pdf
byAndrey Prozorov, CISM, CIPP/E, CDPSE. LA 27001
 
EU GDPR and you: requirements for marketing
byIT Governance Ltd
 
GDPR 11/1/2017
byisc2-hellenic
 
Key Issues on the new General Data Protection Regulation
byOlivier Vandeputte
 
GDPR 101
byAnubhav Dhiman
 
Esc gdpr oct 2018
byProf. Jacques Folon (Ph.D)
 
GDPR Breakfast Briefing for Business Advisors
byHarrison Clark Rickerbys
 
Engage 2018: GDPR Three Days To Go
bypanagenda
 
UX & GDPR - Building Customer Trust with your Digital Experiences
byStephen Denning
 
Changing legislation – General Data Protection Regulation (GDPR) and librarie...
byCILIPScotland
 
Digital law and GDPR
byProf. Jacques Folon (Ph.D)
 

More from Mathew Chacko

PPSX
consent:gdpr
byMathew Chacko
 
PDF
Overview of digital payments in india
byMathew Chacko
 
PDF
Spice Route Legal Data Protection & Privacy Update
byMathew Chacko
 
PDF
The defence india start up challenge
byMathew Chacko
 
PDF
Video on Demand: Indian Law
byMathew Chacko
 
PDF
Anatomy of a simple India - Delaware flip
byMathew Chacko
 
PDF
An eye in the sky?
byMathew Chacko
 
PDF
Competition law and Joint Ventures
byMathew Chacko
 
PDF
Startups - data protection
byMathew Chacko
 
PDF
Abuse of dominance
byMathew Chacko
 
DOCX
Blockchain (2019)
byMathew Chacko
 
PDF
The long arm of the gdpr
byMathew Chacko
 
PDF
Online wallets: part 2 (compliance)
byMathew Chacko
 
PDF
ICOs: A Primer
byMathew Chacko
 
PPSX
Blockchain & the law 101
byMathew Chacko
 
PPSX
The Law on Token sales
byMathew Chacko
 
PDF
Wallets an overview
byMathew Chacko
 
consent:gdpr
byMathew Chacko
 
Overview of digital payments in india
byMathew Chacko
 
Spice Route Legal Data Protection & Privacy Update
byMathew Chacko
 
The defence india start up challenge
byMathew Chacko
 
Video on Demand: Indian Law
byMathew Chacko
 
Anatomy of a simple India - Delaware flip
byMathew Chacko
 
An eye in the sky?
byMathew Chacko
 
Competition law and Joint Ventures
byMathew Chacko
 
Startups - data protection
byMathew Chacko
 
Abuse of dominance
byMathew Chacko
 
Blockchain (2019)
byMathew Chacko
 
The long arm of the gdpr
byMathew Chacko
 
Online wallets: part 2 (compliance)
byMathew Chacko
 
ICOs: A Primer
byMathew Chacko
 
Blockchain & the law 101
byMathew Chacko
 
The Law on Token sales
byMathew Chacko
 
Wallets an overview
byMathew Chacko
 

Recently uploaded

PDF
Watermarked-Tabular-Comments-Draft-Shram-Shakti-CJP-1.pdf
bysabranghindi
 
PPTX
For the School Teachers POCSO AWARENESS.pptx
byAbhimanyuRadhe1
 
PPTX
Legal Support for Pharma Industry -Aeren
byAeren LPO
 
PDF
Patent Filing Services in Pune, Maharashtra
byLokesh Singh
 
PDF
David Davis Lawyer - A Speaker At CBA National Conferences
byDavid Davis Lawyer
 
PDF
Md. Sirajuddwla Vs. The State and Ors. [2016] 1LNJ(HCD)177.
byGreen university of Bangladesh
 
PDF
CHAR410 Application – Les Maîtres d’Art Haïtiens Trust
bycesarpublishingcompa
 
PDF
Likelihood of Confusion - The Power of the 'Reasonably-Prudent' Consumer
byWILLIAM SCOTT GOLDMAN
 
PDF
Embed-3.pdf The judgement of Bombay High Court
bysabranghindi
 
PDF
Annita Larissa Sciacovelli, Italy, September 2025 Top Cyber News MAGAZINE
byDr. Ludmila Morozova-Buss
 
PPTX
Evidences That Can Make or Break a Domestic Violence Case in Denver
byMastro, Barnes & Stazzone, P.C
 
PDF
ACFrOgASpByNq-otFBqjFQzRIa-mDflaYUQOlWo0TsAjtVCSU3osjcx3nOxIZrYs4Wgkvo_7ekWST...
bysabranghindi
 
PDF
Embed-2.pdf The order of Allahabad High Court
bysabranghindi
 
PDF
SIR-12-States-Instructions-.pdf can be read here
bysabranghindi
 
DOCX
Photograps after second fire in my apartment on Gotlieb 12 Tel Aviv
byHaim R. Branisteanu
 
DOCX
The little ones are hanged, the big ones are let go from Financial Times article
byHaim R. Branisteanu
 
PDF
Global Citizenship and Business Ethics: Transforming Compliance into Strategi...
bySoumya Dubey
 
PPT
O.J. Simpson: The Trial That Shocked America
byWilliamB29
 
PPTX
在读证明英国伦敦南岸大学毕业证学历认证查询{LSBU录取通知书LSBU成绩单}offer
by24小时在线咨询卡莫森学院毕业证学历认证官网【Q微:1954292140】
 
PPTX
Unit -7: Tribe and Caste in the traditional Order - Caste and Class in Contem...
byVenkateshGaikwad2
 
Watermarked-Tabular-Comments-Draft-Shram-Shakti-CJP-1.pdf
bysabranghindi
 
For the School Teachers POCSO AWARENESS.pptx
byAbhimanyuRadhe1
 
Legal Support for Pharma Industry -Aeren
byAeren LPO
 
Patent Filing Services in Pune, Maharashtra
byLokesh Singh
 
David Davis Lawyer - A Speaker At CBA National Conferences
byDavid Davis Lawyer
 
Md. Sirajuddwla Vs. The State and Ors. [2016] 1LNJ(HCD)177.
byGreen university of Bangladesh
 
CHAR410 Application – Les Maîtres d’Art Haïtiens Trust
bycesarpublishingcompa
 
Likelihood of Confusion - The Power of the 'Reasonably-Prudent' Consumer
byWILLIAM SCOTT GOLDMAN
 
Embed-3.pdf The judgement of Bombay High Court
bysabranghindi
 
Annita Larissa Sciacovelli, Italy, September 2025 Top Cyber News MAGAZINE
byDr. Ludmila Morozova-Buss
 
Evidences That Can Make or Break a Domestic Violence Case in Denver
byMastro, Barnes & Stazzone, P.C
 
ACFrOgASpByNq-otFBqjFQzRIa-mDflaYUQOlWo0TsAjtVCSU3osjcx3nOxIZrYs4Wgkvo_7ekWST...
bysabranghindi
 
Embed-2.pdf The order of Allahabad High Court
bysabranghindi
 
SIR-12-States-Instructions-.pdf can be read here
bysabranghindi
 
Photograps after second fire in my apartment on Gotlieb 12 Tel Aviv
byHaim R. Branisteanu
 
The little ones are hanged, the big ones are let go from Financial Times article
byHaim R. Branisteanu
 
Global Citizenship and Business Ethics: Transforming Compliance into Strategi...
bySoumya Dubey
 
O.J. Simpson: The Trial That Shocked America
byWilliamB29
 
在读证明英国伦敦南岸大学毕业证学历认证查询{LSBU录取通知书LSBU成绩单}offer
by24小时在线咨询卡莫森学院毕业证学历认证官网【Q微:1954292140】
 
Unit -7: Tribe and Caste in the traditional Order - Caste and Class in Contem...
byVenkateshGaikwad2
 

Transparency gdpr

  • 1.
  • 2.
    AN INTRODUCTION TO TRANSPARENCY  No definitionunder the GDPR.  It is an overarching obligation that applies irrespective of the legal basis for processing and through the entire processing period.
  • 3.
    PROVIDING DATA SUBJECTSWITH INFORMATIONRELATINGTO FAIR PROCESSING COMMUNICATING WITH DATA SUBJECTS IN RELATIONTOTHEIR RIGHTS FACILITATINGTHE EXERCISE BY DATA SUBJECTS OFTHEIR RIGHTS APPLICATION
  • 4.
    ELEMENTS ARTICLE 12 ARTICLE 13-14ARTICLE 15-22 ARTICLE 34 PROVISIONOF INFORMATIONTO DATA SUBJECTS COMMUNICATIONS IN RELATIONTO DATA BREACHES COMMUNICATIONS CONCERNING RIGHTS OF DATA SUBJECTS
  • 5.
    ARTICE 13  Article13 – Information to be provided when data is collected from the data subject.This includes personal personal data when:  A data subject consciously provides information to the data controller;  A data controller collects data from a data subject by observation.
  • 6.
    ARTICE 14  Article14 – Information to be provided when data has not been obtained from the data subject. This includes personal data that has been obtained from sources such as:  Third party data controllers;  Data brokers;  Publicly available sources.
  • 7.
    ELEMENTS ARTICLE 12 Information must comply withthe following requirements  Concise, transparent, intelligible, and easily accessible;  Clear and plain language;  Must be in writing or by other means;  When requested by a data subject, it should be provided orally;  Should be provided free of charge, with a few exceptions (i.e., when requests are “manifestly unfounded or excessive”).
  • 8.
    ELEMENTS ARTICLE 12 CONCISE, TRANSPARENT,INTELLIGIBLE, AND EASILY ACCESSIBLE  Information should be communicated efficiently, should avoid information fatigue, and should be differentiated from other non- privacy related information.  It should be understood by an average member of the intended audience & is closely linked to clear and plain language.  The data subject should not have to seek out information and should not be more than 2 taps away (for example: the use of contextual pop-ups when filling out forms or though the use of layered privacy statements).
  • 9.
    ELEMENTS ARTICLE 12 CLEARAND PLAINLANGUAGE  GOOD: We will retain your shopping history and use details of the products you have purchased to make suggestions for other products which we believe you will be interested in.  BAD: We may use your personal information to develop a new service.  Indefinite language - “may”, “might”, “possible”, etc. - should be avoided.
  • 10.
  • 11.
  • 12.
  • 13.
    INFORMATION TO BE PROVIDED  Useprivacy statements (or notices or policies) or fair processing notices .  The data controller should take appropriate measures in relation to the provision of information for transparency. This means gauging the situation to decide the best way to communicate information.  Test different methods.
  • 14.
    WHENSHOULD INFORMATION BE PROVIDED?  Article13 – at the time when personal data is collected.  Article 14 or indirectly obtained personal data – within a reasonable period after obtaining the data, and no later than one month, having regard to the circumstances.  If data is used for communication with the data subject, information should be provided at the latest at the time of first communication.  If data is being disclosed to a third party, information should be provided at the latest at the time of first disclosure.
  • 15.
    EXCEPTIONSTO PROVIDING INFORMATION  Article 13– in the event the data subject already has this information. Data controllers will need to demonstrate and document what information the data subject already has, how and when it was received, and that no changes have occurred to the information to make it out of date.
  • 16.
    EXCEPTIONSTO PROVIDING INFORMATION Article 14  Provisionof information would prove impossible, would involve a disproportionate effect, would make the objectives of the processing impossible, or seriously impair them.  Data controller is subject to national / EU law to obtain and disclose the personal data and the law provides appropriate protections for data subject’s legitimate interests.  Secrecy obligations
  • 17.
    THANK YOU Should youhave any questions or comments, please get in touch with [email protected] or [email protected] !