Documents related for Commissioner of Data Protection

General Requirements for DP Law 2020

  • Comprehensive Guide to Data Protection Law, DIFC Law No. 5 of 2020 and DP Regulations
  • Overview of DIFC Data Protection Regime
  • Webinar: Introduction to DIFC DP Law 2020
  • Webinar: FAQs

Lawful Processing

  • Consent
  • Processing Personal Data Through Autonomous & Semi-Autonomous Systems (Reg 10)

Accountability & Notifications

  • Comprehensive Guide to Notification of Processing Operations
  • Step by Step Portal Guide to Notifying the DIFC DP Commissioner of Processing Operations
  • Step by Step Portal Guide to DP Inspections
  • Sample DIFC Record of Processing Activities
  • Webinar: Accountability, Supervision and Enforcement
  • Webinar: Applicability and Notifications

Data Protection Officers

  • High Risk Processing & DPO Appointments
  • Webinar: DPO Appointments

Risk Assessments (DPIAs, DPO Annual Assessment)

  • Data Processing Impact Assessments with "DPIA Required" List
  • Sample Compliance Checklist and DPIA
  • DPO Annual Assessment - Checklist & FAQs
  • Sample DPO Annual Assessment and Risk Matrix - 2023

Obligations of Controllers & Processors

  • Controller & Processor Agreements
  • Article 24 Contract Clauses & DIFC Abbreviated SCCs
  • Retention & Storage of Personal Data

Data Export & Sharing

  • DIFC Data Export & Sharing Handbook
  • Guidance on Article 28 of DIFC DP Law 2020
  • DIFC DP Law 2020 - Article 28 FAQs
  • DIFC EDMRI Guidance and Ratings - August 2022
  • DIFC EDMRI Guidance - October 2022
  • ** UPDATED: DIFC EDMRI Guidance - April 2023
  • DIFC EDMRI FAQs
  • Webinar: Data Export and Sharing
  • DIFC A 27 SCCs - DIFC Exporter transferring to Non-DIFC Importer
  • DIFC Abbreviated SCCs - 2023

Information Provision & Rights of Individuals

  • Individuals’ Rights to Access and Control Personal Data Processing
  • Individual Rights & Remedies Checklist
  • Complaints & Mediation Processes
  • Direct Marketing & Electronic Communications

Personal Data Breaches

  • Notifying the Commissioner of a Personal Data Breach
  • Webinar: Personal Data Breaches

Remedies, Liability and Sanctions

  • Commissioner's Powers, Fines & Sanctions
  • Individual Rights & Remedies Checklist
  • Complaints & Mediation Processes

Data Protection Tuesday Talks

  • DIFC DP Talks #1: Overview and DP Website
  • DIFC DP Talks #2: Amendments and Consultation
  • DIFC DP Talks #3: Notifications
  • DIFC DP Talks #4: Inspections
  • DIFC DP Talks #5: DPO Annual Assessment
  • DIFC DP Talks #6: Article 28
  • DIFC DP Talks #7: Supervision & Enforcement
  • DIFC DP Talks #8: Benefits of a DPMP
  • DIFC DP Talks #9: Localisation and CLOUD Act
  • DIFC DP Talks #10: AI Regulation
  • DIFC DP Talks #11: Q1 2023 Review & Catch Up
  • DIFC DP Talks #12: EU Enforcement & Impact on DIFC-based Controllers and Processors
  • DIFC DP Talks #13: China PIPL and SCCs

External Guidance, Policies & Other Presentations

  • Covid 19 Data Collection FAQs
  • DIFC Privacy Day 2022 - Jan 25 Webinar on UAE DP Law
  • DIFC Privacy Day 2022 - Jan 27 Webinar on DIFC Data Export and Sharing
  • Webinar: Continuous Improvement and Compliance 2022
  • OECD Privacy Site with Link to Guidelines
  • OECD Declaration on Government Access to Personal Data Held by Private Sector Entities
  • OECD Recommendation on Digital Security Risk Management for Economic and Social Prosperity