In the last two years, the Bull & Co technology team has performed a series of "GDPR reviews" for companies of all sizes and in various industries. We have found that some success criteria repeat themselves in the most successful projects. They are listed here:

On 5 June 2018, the Court of Justice of the European Union (CJEU) decided that an administrator of a Facebook fan page will be considered a so-called data controller, jointly with Facebook. This means that the creator of a Facebook page for marketing purposes, becomes responsible for complying with the Personal Data Act (including GDPR) in its...

Even if the Parliament managed to deliver the proposition earlier than they expected, the implementation of GDPR in Norwegian law will still be dependent on that GDPR formally is included in the EEA-agreement.

On 23 March, the Norwegian Ministry of Justice presented draft legislation for the processing of personal data (Personal Data Act) and for consent to join an EEA Joint Committee decision regarding the incorporation of Regulation (EU) No. 2016/679 (General Data Protection Regulation) into the EEA Agreement. The draft legislation may be read here (in...

E24 hevder i en artikkel at det er usikkert om GDPR kan implementeres som norsk lov innen fristen i 25. mai 2018, se https://rett24.no/articles/gdpr-fristen-kan-bli-utsatt

Da er nyttårsfeiringen over for denne gang og det er på tide
å reflektere over det som skal skje i året som kommer.

For å hjelpe brukerne til å forstå den nye personvernforordningen, skriver et råd bestående av representanter for alle datatilsynene i EØS veiledninger. (Rådet omtales ofte som Article 29 Working Party - WP29 for innvidde - er døpt «Det europeiske personvernråd» i det norske utkastet til ny personopplysningslov.)