Partner Alexander Egerton has written for Infosecurity Magazine on the recent fine issued against WhatsApp by the Irish Data Protection Commission.
“Every privacy policy needs careful thought and reflects the company’s actual data processing. Therefore, the policies must be bespoke and evolve with the business. The more controversial changes can be better highlighted by pop-ups or emails highlighting these points. Those measures will better meet the transparency requirements of the GDPR than just asking consumers to agree to a long document with the changes hidden in the text.”