GDPR is a regulation that requires businesses to protect the personal data and privacy of EU citizens for transactions that occur within EU member states. And non-compliance could cost companies ...

Under the GDPR, controllers are required to provide individuals with information relating to what personal information is processed, and how that processing takes place.[1] Some supervisory ...

Personal data is information that relates to an identified or identifiable person who could be identified, directly or indirectly based on the information. The EU-wide rules in the Data Protection Act ...

TikTok is facing a fresh European Union privacy investigation into user data transferred to China. The Irish Data Protection ...

GDPR sets forth several rights of individuals with respect to their personal information. The specific rights that apply depend on the type of data, especially data deemed highly sensitive.

Introduction Let’s be honest — nobody loves dealing with compliance. It usually sounds like a bunch of paperwork and legal jargon no one asked for. But when it comes to identity systems and Single ...

After an eight-month Parliamentary journey, the Data (Use and Access) Act 2025 ("DUAA") received Royal Assent on 19 June 2025 ...

The UK GDPR has classified some types of personal data as being more sensitive than others. These types of personal data are known as special category data. The following data is considered to be ...