Datatilsynet is now following in the footsteps of other regulatory authorities and declaring the use of Google Analytics virtually illegal in terms of GDPR compliance. It has stirred up the past week, and it can be difficult to find out what to do, including what options there are to continue with GA, [...]
This post is written for the practitioners out there who already now little by little want to start forming an overview of what NIS2 concretely means when NIS2 is expected to be finally adopted this year, as well as what needs to be done in order to get a method in the task solution. As you know, the most important requirements for the units [...]
Datatilsynet issued a cloud guide in Danish and English in March this year. It was not only about transfer to the USA/unsafe third countries, although one would think so from what was subsequently focused on among the wise minds. For example, it was also about knowing your final processor (where is your data?), that [...]
In a new decision, the Icelandic Data Protection Authority has ruled that a school in Reykjavík may not use a US cloud provider: “[..] all processing in the Seesaw educational system should be seized and students' data deleted after being retrieved, if applicable, to be stored within each school. ” The order comes on top of all the controversy over shipments to the US […]
Summary When you need to establish information and cyber security, you must start by assessing how much security you need and how expensive it will be to achieve in relation to your maturity. For work, you can be inspired by a well-known standard (ISO270XX, NIST SP 800-XXX, CIS18 or similar). First to […]
Most organizations (public + private) transfer personal data outside the EU. This is not least typically the case if they use services from Microsoft. But it can also easily be done through other, smaller cloud tools. Unexpectedly, decisions have begun to emerge around the EU that actually take Schrems II seriously by imposing […]
"UNITAS has taken up simulated answering of the questions towards some existing customers, and can conclude that with that the customers work with UNITAS has done, it enables them to correspond practically to a 12-figure throughout. ” UNITAS have requested insight into Datatilsynets (DT) questioning framework that is used against […]
We all have to make rubber figures My youngest daughter came home from kindergarten one day and showed me a brownish figure she had made at school. The figure was a bit uninteresting as it stood on the kitchen table, but you clap as you should as a father. What the elementary school says is always right and I should not […]
In continuation of Unitas'blog post about the supervision of data processors, we can inform you that it is now possible to subscribe to the list of Microsoft (sub-) data processors. Microsoft must first be praised for cutting back SELECTIVELY on the number of their (sub-) data processors back in September 2019. Now the list is much clearer. But what if […]
With the many rules that apply today, it makes very good sense to conduct a screening of both current and new IT vendors. Imagine that you need a new provider of an administrative system for your business. What parameters do you choose according to today? Price You have a good reputation I have used […]
