Legal

The personnel management process in foxondo has been revised: we have replaced the questions about former employees, retention periods and the implementation of deletion requests with a clearer and more practical structure.

In foxondo, we have combined two questions in the processes relating to external access options and cooperation with other organizations. This makes documenting cooperation with external parties easier and clearer for you – and eliminates redundant information. Here you can find out what has changed and why this is beneficial for your documentation.

There is a new question regarding protection of data: Whether the technical and organizational measures (TOMs) taken are suited to protect the personal data in the process adequately. The new question replaces previous questions on additional TOMs and pseudonymization. Of course, we have already transferred the content of these questions for you.

Is your company a data processor, i.e. does it provide services on behalf of other companies? In addition to documenting your own internal processes, you must also document the processes you provide to other companies, insofar as personal data is processed.

The Trans-Atlantic Data Privacy Framework (TADPF) is a legal basis for data transfers to the USA. US President Trump is currently having numerous executive orders from his predecessor reviewed, including those on which the EU-U.S. Data Privacy Framework (TADPF) is largely based. What should you do now?

When are you allowed to process personal data? ONLY when you have a specific legal basis which allows it. Otherwise, never.