Supporting SMEs on the security of personal data processing (EN)
*En anglais avec interprétation simultanée en français*
One of the core obligations for all businesses, including SMEs, acting either as data controllers or data processors, in GDPR is that of the security of personal data. In particular, according to GDPR security equally covers confidentiality, integrity and availability and should be considered following a risk-based approach: the higher the risk, the more rigorous the measures that the controller or the processor needs to take (in order to manage the risk). Based on GDPR Article 32 provisions, the presentation aims to facilitate SMEs in understanding the context of the personal data processing operation(s), assess the associated security risks and adopt security measures for the protection of personal data, following a risk-based approach.