Verfügbarkeit: The GDPR handbook

The GDPR handbook: a guide to implementing the EU General Data Protection Regulation

Gespeichert in:

Bibliographische Detailangaben
1. Verfasser:	Kolah, Ardi (VerfasserIn)
Format:	Buch
Sprache:	English
Veröffentlicht:	London Kogan Page 2018
Schlagworte:	Europäische Union > Datenschutz-Grundverordnung Datenschutzbeauftragter Unternehmen
Online-Zugang:	Inhaltsverzeichnis
Beschreibung:	xx, 352 Seiten Diagramme, Karte
ISBN:	9780749474942

Internformat

MARC


LEADER	00000nam a2200000 c 4500
001	BV044741521
003	DE-604
005	20180607
007	t
008	180201s2018 \|\|\|\| \|\|\|\| 00\|\|\| eng d
020			\|a 9780749474942 \|9 978-0-7494-7494-2
035			\|a (OCoLC)1039837998
035			\|a (DE-599)BVBBV044741521
040			\|a DE-604 \|b ger \|e rda
041	0		\|a eng
049			\|a DE-739
084			\|a PZ 4800 \|0 (DE-625)141183: \|2 rvk
100	1		\|a Kolah, Ardi \|e Verfasser \|0 (DE-588)174004532 \|4 aut
245	1	0	\|a The GDPR handbook \|b a guide to implementing the EU General Data Protection Regulation \|c Ardi Kolah
264		1	\|a London \|b Kogan Page \|c 2018
300			\|a xx, 352 Seiten \|b Diagramme, Karte
336			\|b txt \|2 rdacontent
337			\|b n \|2 rdamedia
338			\|b nc \|2 rdacarrier
610	2	7	\|a Europäische Union \|t Datenschutz-Grundverordnung \|0 (DE-588)1105568555 \|2 gnd \|9 rswk-swf
650	0	7	\|a Datenschutzbeauftragter \|0 (DE-588)4148877-5 \|2 gnd \|9 rswk-swf
650	0	7	\|a Unternehmen \|0 (DE-588)4061963-1 \|2 gnd \|9 rswk-swf
689	0	0	\|a Unternehmen \|0 (DE-588)4061963-1 \|D s
689	0	1	\|a Europäische Union \|t Datenschutz-Grundverordnung \|0 (DE-588)1105568555 \|D u
689	0	2	\|a Datenschutzbeauftragter \|0 (DE-588)4148877-5 \|D s
689	0		\|5 DE-604
776	0	8	\|i Erscheint auch als \|n Online-Ausgabe \|z 978-0-7494-7495-9
856	4	2	\|m Digitalisierung UB Passau - ADAM Catalogue Enrichment \|q application/pdf \|u http://bvbr.bib-bvb.de:8991/F?func=service&doc_library=BVB01&local_base=BVB01&doc_number=030137353&sequence=000001&line_number=0001&func_code=DB_RECORDS&service_type=MEDIA \|3 Inhaltsverzeichnis
999			\|a oai:aleph.bib-bvb.de:BVB01-030137353

Datensatz im Suchindex

_version_	1804178246198099968
adam_text	CONTENTS About the author xvi Foreword by Elizabeth Denham xvii Foreword by Bruno Gencarelli xix Introduction 1 01 Speed read of General Data Protection Regulation 2016/679 (GDPR) 3 Introduction 4 Data protection principles 5 Security of processing 6 Data Protection Officer (DPO) 6 Data controller and pan-European data breach notification obligations 7 Extra-territorial reach 8 Cross-border data transfer rules 9 Data mapping 9 Data processor obligations 9 Data subjects’ rights 10 Quality of consent 10 ‘One-stop shop’ 11 Profiling and profiling-based decision making 12 Data protection by design and by default 12 Data Protection Impact Assessment and DPIA ‘Lite’ 13 Sanctions and fines 13 02 The role of the Data Protection Officer (DPO) 14 Introduction 14 Authority for the appointment of a DPO 15 Types of DPO contracts 19 Appointing a DPO 20 DPO duties and monitoring 20 Reporting lines 23 Special terms and conditions 23 Necessary skills and experience 25 Ongoing training and monitoring 28 03 The gap between policy, company appetite and reality 32 Introduction 32 Non-compliance 33 Unlawful processing of personal data 34 Infringement 34 Dealing with near misses 37 Action planning 39 04 Upward and downward communication 44 Introduction 44 Building trust with key stakeholders 45 Benefits of a pre-agreed personal data breach (PDB) process 46 Hiring skilled support staff 46 Key priorities for the DPO in the first 100 days in office 49 Challenges and rewards 52 05 Identifying risks 53 Introduction 53 Data types and risk categories 53 How data types link to different categories of risk 57 Data location, access and transfer 65 06 Sanctions, compliance and fines 75 Introduction 75 Sanctions, compliance and fines 76 Consequences of failing to comply with the GDPR 82 Mitigating fines under the GDPR 89 07 The Data Protection Impact Assessment (DPIA) 90 Introduction 90 What is the DPIA? 91 Why is the DPIA important? 91 When is it appropriate to conduct a DPI A? 93 ‘High risk5 processing activities under the GDPR 96 DPIA key outputs 100 When a DPIA is unnecessary 101 What is an acceptable residual risk? 102 Who should carry out the DPIA? 103 How to carry out a DPIA 104 Consulting the supervisory authority 105 Publishing the DPIA 108 08 Privacy and security breach management 109 Introduction 109 What is a personal data breach? 110 Consequences of a personal data breach 112 Notifying the supervisory authority 113 Notifying the data subject 117 Sanctions and fines 120 Risk mitigation measures 121 10-step privacy and security breach management process 121 Reputation management 132 09 Managing the value chain 134 Introduction 134 Traditional disconnect between business and technology 135 Risk appetite and risk and control assessment 136 A risk management and data governance framework 137 Best practice in risk management 139 Assurance 139 Compliance 140 Protection and detection 141 Incident management 142 Audit 143 10 Introducing data protection by design and by default 144 Introduction 144 Origins of data protection by design and by default 145 Consent 147 The data subject 147 Influencing factors 148 Mindset change 150 New product development 151 Privacy-enhancing technologies 152 Machine-to-machine personal data processing 152 11 Contracting out personal data processing 154 Introduction 154 Processing personal data with a data processor 155 Minimum GDPR requirements for hardware and software tools 161 Taking a holistic approach to data protection 162 Examples of secure storage of personal data on external devices 165 Looking at the big picture 165 12 Data incident breach: obligations, implications and management 166 Introduction 166 Obligations imposed by the supervisory authority and regulator 167 Using third parties to process personal data 168 The ‘Holy Trinity’ of data protection 169 Technical and organizational measures 170 Integrating data incident management 171 Codes of conduct 172 Legal, business and public relations implications of a personal data breach 173 Crisis management across the value chain 174 Contractual arrangements 176 13 Security standards 177 Introduction 177 Standards for GDPR compliance 178 International Organization for Standardization (ISO) 178 Payment Card Industry Data Security Standard (PCI DSS) 179 Other information security standards 181 ISO/IEC 27001 and 27002 183 Using ISO certification for each link in the value chain 190 Personal information management system (PIMS) BS 10012:2017 191 Codes of conduct and ISO standards 192 Implementing data protection by design and by default 195 Introduction 195 Seeing the bigger picture and filling in the gaps 196 Principle of least privilege (POLP) 197 The dream team’ 198 Conducting a DPIA Lite5 200 Data protection by design and by default relationships 201 Implementing data protection by design and by default 201 Implementing data protection by default 215 Data discovery and data mapping tools 216 Keeping up to date with new practices for data protection by design and by default 221 Quantifying the risks of identified vulnerabilities 222 Use of near misses to improve data protection by design and by default 223 Steps to take now 223 Technical security measures 225 Introduction 225 Encryption, pseudonymization and anonymization 225 How anonymized’ data is used to re-identify the data subject 235 How should the DPO protect personal data? 239 Implementing the principle of least privilege (POLP) 247 Does the DPO need to set up a security operations centre (SOC)? 249 Cloud computing and bring your own devices (BYOD) in the workplace 250 Introduction 250 Cloud service provision 251 Cloud services: mitigating the risks 258 Bring your own device (BYOD) and the Internet of Things (IoT) 258 How to secure BYOD and IoT devices 260 Risks and benefits 263 17 Mobile technologies 264 Introduction 264 Compliant use of mobile devices 265 Secure transmission on BYOC and shadow IT networks 270 Installing and configuring apps on corporate-issue mobile devices 271 Lost/stolen mobile devices containing personal data 273 Should all personal data reside on a cloud and not on the mobile device? 274 What are the implications of BYOD in the workplace? 274 Managing staff turnover 277 18 The Internet of Things (loT) 279 Introduction 279 Which devices are included in the IoT? 279 Are IoT devices similar to mobile technologies? 280 Issues for ‘always on’ IoT devices 282 Delivering a data privacy notice to an IoT product or service 283 How to make IoT devices compliant with the GDPR 284 19 Trans-border personal data transfers 288 Introduction 288 Meeting international data transfer requirements 289 Legislative framework 293 International personal data transfers 295 Transferring personal data to third countries 296 Binding corporate rules (BCRs) 300 Future cross-border personal data transfers 302 Email within and outside the EU 303 Mobile devices and travelling employees 303 20 Physical personal data records 305 Introduction 305 Hard-copy digitization 305 Secure disposal of hard copies 307 Additional considerations for the HR department 307 Physical and organizational measures 309 Transferring personal data by fax 310 Security updates and looking towards the future 312 Introduction 312 Why is it so important to maintain data processing software? 312 Why is it so important to update security software? 314 Incorporating security software updates as ‘business as usual’ (BAU) 315 How can we think about the future of data protection? 317 Appendices 319 Appendix A: Data protection supervisory authorities within the EU 320 Appendix B: Data protection supervisory authorities outside the EU 322 Appendix C: Link to the European Commission 324 Appendix D: Henley Business School GDPR Professional Certificate 325 Appendix E: Journal of Data Protection and Privacy 327 Appendix F: Glossary of terms 329 Index 343
any_adam_object	1
author	Kolah, Ardi
author_GND	(DE-588)174004532
author_facet	Kolah, Ardi
author_role	aut
author_sort	Kolah, Ardi
author_variant	a k ak
building	Verbundindex
bvnumber	BV044741521
classification_rvk	PZ 4800
ctrlnum	(OCoLC)1039837998 (DE-599)BVBBV044741521
discipline	Rechtswissenschaft
format	Book
fullrecord	<?xml version="1.0" encoding="UTF-8"?><collection xmlns="http://www.loc.gov/MARC21/slim"><record><leader>01630nam a2200373 c 4500</leader><controlfield tag="001">BV044741521</controlfield><controlfield tag="003">DE-604</controlfield><controlfield tag="005">20180607 </controlfield><controlfield tag="007">t</controlfield><controlfield tag="008">180201s2018 \|\|\|\| \|\|\|\| 00\|\|\| eng d</controlfield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9780749474942</subfield><subfield code="9">978-0-7494-7494-2</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(OCoLC)1039837998</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(DE-599)BVBBV044741521</subfield></datafield><datafield tag="040" ind1=" " ind2=" "><subfield code="a">DE-604</subfield><subfield code="b">ger</subfield><subfield code="e">rda</subfield></datafield><datafield tag="041" ind1="0" ind2=" "><subfield code="a">eng</subfield></datafield><datafield tag="049" ind1=" " ind2=" "><subfield code="a">DE-739</subfield></datafield><datafield tag="084" ind1=" " ind2=" "><subfield code="a">PZ 4800</subfield><subfield code="0">(DE-625)141183:</subfield><subfield code="2">rvk</subfield></datafield><datafield tag="100" ind1="1" ind2=" "><subfield code="a">Kolah, Ardi</subfield><subfield code="e">Verfasser</subfield><subfield code="0">(DE-588)174004532</subfield><subfield code="4">aut</subfield></datafield><datafield tag="245" ind1="1" ind2="0"><subfield code="a">The GDPR handbook</subfield><subfield code="b">a guide to implementing the EU General Data Protection Regulation</subfield><subfield code="c">Ardi Kolah</subfield></datafield><datafield tag="264" ind1=" " ind2="1"><subfield code="a">London</subfield><subfield code="b">Kogan Page</subfield><subfield code="c">2018</subfield></datafield><datafield tag="300" ind1=" " ind2=" "><subfield code="a">xx, 352 Seiten</subfield><subfield code="b">Diagramme, Karte</subfield></datafield><datafield tag="336" ind1=" " ind2=" "><subfield code="b">txt</subfield><subfield code="2">rdacontent</subfield></datafield><datafield tag="337" ind1=" " ind2=" "><subfield code="b">n</subfield><subfield code="2">rdamedia</subfield></datafield><datafield tag="338" ind1=" " ind2=" "><subfield code="b">nc</subfield><subfield code="2">rdacarrier</subfield></datafield><datafield tag="610" ind1="2" ind2="7"><subfield code="a">Europäische Union</subfield><subfield code="t">Datenschutz-Grundverordnung</subfield><subfield code="0">(DE-588)1105568555</subfield><subfield code="2">gnd</subfield><subfield code="9">rswk-swf</subfield></datafield><datafield tag="650" ind1="0" ind2="7"><subfield code="a">Datenschutzbeauftragter</subfield><subfield code="0">(DE-588)4148877-5</subfield><subfield code="2">gnd</subfield><subfield code="9">rswk-swf</subfield></datafield><datafield tag="650" ind1="0" ind2="7"><subfield code="a">Unternehmen</subfield><subfield code="0">(DE-588)4061963-1</subfield><subfield code="2">gnd</subfield><subfield code="9">rswk-swf</subfield></datafield><datafield tag="689" ind1="0" ind2="0"><subfield code="a">Unternehmen</subfield><subfield code="0">(DE-588)4061963-1</subfield><subfield code="D">s</subfield></datafield><datafield tag="689" ind1="0" ind2="1"><subfield code="a">Europäische Union</subfield><subfield code="t">Datenschutz-Grundverordnung</subfield><subfield code="0">(DE-588)1105568555</subfield><subfield code="D">u</subfield></datafield><datafield tag="689" ind1="0" ind2="2"><subfield code="a">Datenschutzbeauftragter</subfield><subfield code="0">(DE-588)4148877-5</subfield><subfield code="D">s</subfield></datafield><datafield tag="689" ind1="0" ind2=" "><subfield code="5">DE-604</subfield></datafield><datafield tag="776" ind1="0" ind2="8"><subfield code="i">Erscheint auch als</subfield><subfield code="n">Online-Ausgabe</subfield><subfield code="z">978-0-7494-7495-9</subfield></datafield><datafield tag="856" ind1="4" ind2="2"><subfield code="m">Digitalisierung UB Passau - ADAM Catalogue Enrichment</subfield><subfield code="q">application/pdf</subfield><subfield code="u">http://bvbr.bib-bvb.de:8991/F?func=service&doc_library=BVB01&local_base=BVB01&doc_number=030137353&sequence=000001&line_number=0001&func_code=DB_RECORDS&service_type=MEDIA</subfield><subfield code="3">Inhaltsverzeichnis</subfield></datafield><datafield tag="999" ind1=" " ind2=" "><subfield code="a">oai:aleph.bib-bvb.de:BVB01-030137353</subfield></datafield></record></collection>
id	DE-604.BV044741521
illustrated	Not Illustrated
indexdate	2024-07-10T08:00:55Z
institution	BVB
isbn	9780749474942
language	English
oai_aleph_id	oai:aleph.bib-bvb.de:BVB01-030137353
oclc_num	1039837998
open_access_boolean
owner	DE-739
owner_facet	DE-739
physical	xx, 352 Seiten Diagramme, Karte
publishDate	2018
publishDateSearch	2018
publishDateSort	2018
publisher	Kogan Page
record_format	marc
spelling	Kolah, Ardi Verfasser (DE-588)174004532 aut The GDPR handbook a guide to implementing the EU General Data Protection Regulation Ardi Kolah London Kogan Page 2018 xx, 352 Seiten Diagramme, Karte txt rdacontent n rdamedia nc rdacarrier Europäische Union Datenschutz-Grundverordnung (DE-588)1105568555 gnd rswk-swf Datenschutzbeauftragter (DE-588)4148877-5 gnd rswk-swf Unternehmen (DE-588)4061963-1 gnd rswk-swf Unternehmen (DE-588)4061963-1 s Europäische Union Datenschutz-Grundverordnung (DE-588)1105568555 u Datenschutzbeauftragter (DE-588)4148877-5 s DE-604 Erscheint auch als Online-Ausgabe 978-0-7494-7495-9 Digitalisierung UB Passau - ADAM Catalogue Enrichment application/pdf http://bvbr.bib-bvb.de:8991/F?func=service&doc_library=BVB01&local_base=BVB01&doc_number=030137353&sequence=000001&line_number=0001&func_code=DB_RECORDS&service_type=MEDIA Inhaltsverzeichnis
spellingShingle	Kolah, Ardi The GDPR handbook a guide to implementing the EU General Data Protection Regulation Europäische Union Datenschutz-Grundverordnung (DE-588)1105568555 gnd Datenschutzbeauftragter (DE-588)4148877-5 gnd Unternehmen (DE-588)4061963-1 gnd
subject_GND	(DE-588)1105568555 (DE-588)4148877-5 (DE-588)4061963-1
title	The GDPR handbook a guide to implementing the EU General Data Protection Regulation
title_auth	The GDPR handbook a guide to implementing the EU General Data Protection Regulation
title_exact_search	The GDPR handbook a guide to implementing the EU General Data Protection Regulation
title_full	The GDPR handbook a guide to implementing the EU General Data Protection Regulation Ardi Kolah
title_fullStr	The GDPR handbook a guide to implementing the EU General Data Protection Regulation Ardi Kolah
title_full_unstemmed	The GDPR handbook a guide to implementing the EU General Data Protection Regulation Ardi Kolah
title_short	The GDPR handbook
title_sort	the gdpr handbook a guide to implementing the eu general data protection regulation
title_sub	a guide to implementing the EU General Data Protection Regulation
topic	Europäische Union Datenschutz-Grundverordnung (DE-588)1105568555 gnd Datenschutzbeauftragter (DE-588)4148877-5 gnd Unternehmen (DE-588)4061963-1 gnd
topic_facet	Europäische Union Datenschutz-Grundverordnung Datenschutzbeauftragter Unternehmen
url	http://bvbr.bib-bvb.de:8991/F?func=service&doc_library=BVB01&local_base=BVB01&doc_number=030137353&sequence=000001&line_number=0001&func_code=DB_RECORDS&service_type=MEDIA
work_keys_str_mv	AT kolahardi thegdprhandbookaguidetoimplementingtheeugeneraldataprotectionregulation

Verfügbarkeit

Es ist kein Print-Exemplar vorhanden.

Fernleihe Bestellen Achtung: Nicht im THWS-Bestand! Inhaltsverzeichnis

MARC

Datensatz im Suchindex

Es ist kein Print-Exemplar vorhanden.

Ähnliche Einträge