"This is a good guide to a complex new regulation. Its main goal is to explain what the regulation requires and of whom it is required. The regulation's concepts are well explained in simple terms, with loads of useful examples. Anyone working in the area of governance, risk management, and compliance (GRC) will find this book invaluable (and will probably be assured of a long and fruitful career)." (David B. Henderson, Computing Reviews, July, 2018) "The EU General Data Protection Regulation (GDPR): A Practical Guide ... authors Paul Voigt and Axel von dem Bussche have written a highly pragmatic guide that provides an excellent overview of the regulation, and how to ensure compliance with it." (rsaconference.com, March, 2018)
"The authors focus on the practical aspects of the regulation and show how to implement it in a methodical manner. This book has a focus on practical implementation and the authors provide a large number of real-world examples to concretize the many concepts in the regulation." (Ben Rothke, Amazon.com, March, 2018)
"'The EU General Data Protection Regulation (GDPR): A Practical Guide' can be used as a quick guide for the legal and the IT (Information Technology) departments, and especially for the IS (Information Security) staff." (Yuval Sinay, Amazon.com, February, 2018)
"I've gone through multiple books on GDPR - and not being a lawyer the best way to understand GDPR is through good examples. The book does just that. ... Highly recommended for anyone who wants to learn GDPR!" (Prabath Siriwardena, Amazon.com, November, 2017)
"This is a very practical 'live' implementation guide of the new Regulation which will transform how companies and individuals handle data. ... Springer have come up with a Guide that will appeal to everyone from CEO to Software Developer. ... it is a must read for everyone who is involved in handling, collecting, storing or generally coming into contact with personal data." (D. Holloway, Inside Business Magazine, Vol. 25 (6), October, 2017)
1 Introduction and „Checklist“.- 2 Scope of Application of the GDPR.- 3 Organizational Requirements.- 4 Material Requirements.- 5 Rights of Data Subjects.- 6 Interaction with the Supervisory Authorities.- 7 Enforcement and Fines under the GDPR.- 8 National Peculiarities.- 9 Special Data Processing Activities.- 10 Practical Implementation of the Requirements under the GDPR.
Dr. Axel Freiherr von dem Bussche is a partner and head of the Technology Practice Group of the international law firm Taylor Wessing. His fields of expertise are the technology industry, especially data protection matters. A special consulting emphasis is placed on the support of foreign clients in their expansion to Germany. Dr. Axel Freiherr von dem Bussche is a specialist attorney for information technology law.
Paul Voigt is a partner of the international law firm Taylor Wessing and a specialist attorney for information technology law. He has an excellent track record in dealing with the legal aspects of data protection and IT security. Paul provides business-oriented hands-on counseling to startups as well as medium-sized companies and large MNEs. Most of Paul’s client matters have an international element and he often advises clients from overseas which are expanding into Europe. He also supports several multinational groups in the group-wide implementati
on of software and IT security systems and in this context coordinates legal advice in more than 40 jurisdictions worldwide.
This book provides expert advice on the practical implementation of the European Union’s General Data Protection Regulation (GDPR) and systematically analyses its various provisions. Examples, tables, a checklist etc. showcase the practical consequences of the new legislation. The handbook examines the GDPR’s scope of application, the organizational and material requirements for data protection, the rights of data subjects, the role of the Supervisory Authorities, enforcement and fines under the GDPR, and national particularities. In addition, it supplies a brief outlook on the legal consequences for seminal data processing areas, such as Cloud Computing, Big Data and the Internet of Things.
Adopted in 2016, the General Data Protection Regulation will come into force in May 2018. It provides for numerous new and intensified data protection obligations, as well as a significant increase in fines (up to 20 million euros). As a result, not only companies located within the European Union will have to change their approach to data security; due to the GDPR’s broad, transnational scope of application, it will affect numerous companies worldwide.