Privacy Shield and the GDPR: Inadequate Protection for Cross-border Data Transfers

On July 16, 2020, the Court of Justice of the European Union (CJEU) issued a landmark judgement that Privacy Shield is “invalid” because it does not provide “adequate protection” under Article 45 of the General Data Protection Regulation (GDPR) for transfers of personal data of individuals located in the European Union to the United States. Continue reading “Privacy Shield and the GDPR: Inadequate Protection for Cross-border Data Transfers”

Featured CLIMBER:
Arti Lalwani

Employees at A-LIGN take many different paths throughout their journey – that’s why we sat down with Arti Lalwani, ISO Practice Lead at A-LIGN, to talk about her journey in security and compliance, the path from Senior Consultant to Practice Lead and why diversity and inclusion matter to her. Continue reading “Featured CLIMBER:
Arti Lalwani”

ISO 27701: ISO Meets the GDPR

What is ISO 27701?

The ISO/IEC 27701:2019 standard was published on August 6, 2019, and provides the requirements and guidance for establishing, implementing, maintaining and continually improving a Privacy Information Management System (PIMS) as an extension of ISO/IEC 27001:2013 and ISO/IEC 27002:2013. This extension replaces the development standard ISO 27552.

Continue reading “ISO 27701: ISO Meets the GDPR”