Legal Seminar, Chicago, IL

GDPR Compliance Issues

 Right to object  Right to data portability  Right to be “forgotten”  Automated decision-making  72 hour notification of personal data breach  Limited lawfulness of processing: consent; contract; legal obligation; vital interest of data subject; public interest; legitimate interest  Purpose Limitation and Data Minimization

Moral Hazard: lack of incentive to guard against risk where one is protected from its consequences, e.g., by insurance.