My earlier blog post sparked an amusing thought which generated some fun discussions on LinkedIn, and reminded me that there’s a lot of confusion between ‘data protection by design and by default’ (Article 25) and the ‘Data Protection Impact Assessment’ (Article 35). Because I scribble therefore I think; I ended up with this flowchart…..
…..and some notes for my next Mythbusting post!
(You’re welcome to re-use this content as long as a) I get credit and b) you’re not getting anyone to pay you for it)