Comparison of notice requirements for consent between ISO/IEC 29184:2020 and General Data Protection Regulation
Harshvardhan J. Pandit, Georg Philip Krog
Journal of Data Protection & Privacy, Spring 2021; 4(2)
Abstract
This paper analyses the ISO/IEC 29184:2020 standard and compares its requirements for notice and consent with those specified by the General Data Protection Regulation (GDPR). More specifically, it considers the extent to which the ISO/IEC 29184 standard can be applied to demonstrate compliance with the requirements of the GDPR and to identify the additional requirements in areas where it is not sufficient. The paper concludes with remarks on the potential role of ISO/IEC 29184 as a certification mechanism under the GDPR for consent and notice.
Comparison of notice requirements for consent between ISO/IEC 29184:2020 and General Data Protection Regulation
Center for Informed Consent Integrity 