Anyone who starts a company usually has other things to do than deal with data protection issues. This can have unpleasant consequences, because the rules of the GDPR apply almost exactly to small start-ups as they do to large corporations. In episode 42 of the matter of interpretation podcast, Joerg and Holger give tips on what to focus on in order to avoid trouble.
They have Dr. Nils Christian Haag was invited to the show. The lawyer draws on his many years of experience as a data protection officer for various companies and his work on the board of Intersoft Consulting, a company specializing in data protection advice. Haag explains point by point which provisions of the GDPR should be particularly focused on small companies and associations.
Among other things, it is about the website, customer care, correct marketing, a reasonable directory of processing activities and of course order processing. Even if fewer than 20 employees are involved in processing in the company and therefore there is no need for a data protection officer, that does not change the duties, stresses Haag: “This sometimes leads to serious misunderstandings.”
180 pages of advice from specialist lawyers: What companies, associations and the self-employed need to know! With many FAQs, instructions, checklists and samples. On DVD: 60 minute webinar “Anatomy of an IT Disaster” – be prepared and master the crisis.
Here are all of the episodes so far:
A matter of interpretation, the data protection podcast of the c’t magazine