Be cautious your information may not be secure.
Don’t assume that giving rewards or hosting events is simple and without risk… In the age of GDPR/PDPA, you need to be even more vigilant. Don’t repeat mistakes like this again.
1
Be cautious when giving and receiving information every time.
The seemingly simple yet challenging task is to properly safeguard your data. At the same time, if you receive any information, you must also ensure the data owner’s information is well-protected.
1. Be cautious to prevent data leaks as per Article 37.
2. Be careful not to process data incorrectly according to Article 25.
3. Ensure you do not use data beyond what was requested as per Article 23.
4. If you need to contact a third country, exporting data is extremely important according to Article 28.
2
DPO is what organizations need.
To ensure proper data collection and appropriate data export from the organization, the DPO is responsible for recording and gathering that information.
If your organization is small, consider sending someone to learn about it.
If your organization is large, have both an internal and external DPO.
