Defining the purpose and legal basis of data processing
If you collect and process personal data, there should be a purpose and a legal basis for doing so. Determining the legal basis in particular is not an easy task for most people. In this article, we explain how to define the right purpose and the right legal basis as part of the record of processing activities.
Defining processing activities in the VVT simply explained
When you start to create the record of processing activities (RPA), the question of „how“ arises for most people from the very first task, the definition of processing activities. In this article, we explain in simple terms what a processing activity is and how you can find out which processing activities exist in your organisation.
The record of processing activities (RPA) - why it is so important and how best to get started with it
Very few companies think of the register of processing activities (VVT) when they think about data protection. What few people realise: The DPIA is probably the most important component in the GDPR jungle. In the following blog post, we explain why this is the case and how you can easily and comprehensibly start creating a DPIA yourself.
What data protection means for companies and how companies can fulfil their data protection obligations
The General Data Protection Regulation (GDPR) is causing headaches and you don't really know where to start? Don't worry, you're not alone! Many companies, especially SMEs, feel overwhelmed by the GDPR.
In this article, we explain what the GDPR and data protection are all about, what obligations a company has to fulfil, what problems you can expect if you don't fulfil these obligations and how Metasoul can help you avoid these problems.
