Comparison of notice requirements for consent between ISO/IEC 29184:2020 and General Data Protection Regulation

Comparison of notice requirements for consent between ISO/IEC 29184:2020 and General Data Protection Regulation
Harshvardhan J. Pandit, Georg Philip Krog
Journal of Data Protection & Privacy, Spring 2021; 4(2)
Abstract
This paper analyses the ISO/IEC 29184:2020 standard and compares its requirements for notice and consent with those specified by the General Data Protection Regulation (GDPR). More specifically, it considers the extent to which the ISO/IEC 29184 standard can be applied to demonstrate compliance with the requirements of the GDPR and to identify the additional requirements in areas where it is not sufficient. The paper concludes with remarks on the potential role of ISO/IEC 29184 as a certification mechanism under the GDPR for consent and notice.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s