åæç®¡çãDSARèªååãããããŒã¿ãããã³ã°ãåœå¢ãè¶ããããŒã¿è»¢éã¢ãŒããã¯ãã£ã«è³ããŸã§ãã客æ§ã®ããžãã¹ãGDPRã«æºæ ããããã®ãã©ã€ãã·ãŒãã¡ãŒã¹ããªã·ã¹ãã ãèšèšããŸãã
æçµæŽæ°

GDPRæºæ ã®ããŒã¿ãã©ã€ãã·ãŒã·ã¹ãã ã®éçºããå®è£ ãŸã§ããšã³ãããŒãšã³ãã§æäŸ

ã·ã¹ãã å šäœã«ããããã¹ãŠã®å人ããŒã¿ãç¹å®ã»ãããã³ã°ããããŒã¿ä¿è·åœ±é¿è©äŸ¡ïŒDPIAïŒã宿œããåŠç掻åã®èšé²ïŒRoPAïŒãæ§ç¯ããŸãã

æå¹ãªåæã«é¢ããGDPRèŠä»¶ãæºããããã现ãããªåæåéãä¿åã管çã·ã¹ãã ãæ§ç¯ã»å®è£ ããŸãã

ã¢ã¯ã»ã¹æš©ãèšæ£æš©ãæ¶å»æš©ãããŒã¿ããŒã¿ããªãã£æš©ãç°è°ç³ç«æš©ãå«ãããŒã¿äž»äœã¢ã¯ã»ã¹èŠæ±ïŒDSARïŒãåŠçããããã®èªåã¯ãŒã¯ãããŒãéçºããŸãã

SCCsãååæ§èªå®ãããã³æè¡çä¿è·æªçœ®ã䜿çšããŠãåœéæ¥åã®ããã®æºæ ããããŒã¿è»¢éã¡ã«ããºã ãèšèšã»å®è£ ããŸãã
ã客æ§ã®è£œåã¢ãŒããã¯ãã£ã«çµã¿èŸŒãŸãããã©ã€ãã·ãŒãšã³ãžãã¢ãªã³ã°ã®å°éç¥è
GDPRååãåŸä»ãã§ã¯ãªããã¢ããªã±ãŒã·ã§ã³ã¢ãŒããã¯ãã£ã«æåããçµã¿èŸŒã¿ãŸã
èªåããŒã¿ä¿æããªã·ãŒãä»®ååãããã³ç®çå¶éã³ã³ãããŒã«ãå®è£ ããŸã
å人ã®ãã©ã€ãã·ãŒæš©ã䟵害ããããšãªããæŽå¯ãæäŸããã¢ããªãã£ã¯ã¹ã·ã¹ãã ãæ§ç¯ããŸã
ç£ç£åœå±ããã³ããŒã¿äž»äœãžã®èªå䟵害æ€åºãš72æééç¥ã¯ãŒã¯ãããŒ
ãã¹ãŠã®åŠç掻åã«ãããGDPRã³ã³ãã©ã€ã¢ã³ã¹æ å¢ããªã¢ã«ã¿ã€ã ã§å¯èŠå
ããŒã¿ä¿è·è²¬ä»»è ïŒDPOïŒãã³ã³ãã©ã€ã¢ã³ã¹ããã°ã©ã ãå¹ççã«ç®¡çããããã®ã«ã¹ã¿ã ããŒã«
åœç€Ÿãå®è£ ãããã©ã€ãã·ãŒãã©ãããã©ãŒã ãšããŒã¿ã¬ããã³ã¹ããŒã«
OneTrust, TrustArc, Cookiebot
Usercentrics, Osano, CookieYes
BigID, Collibra, Informatica
AWS EU, Azure EU, GCP EU
DataGrail, Transcend, Ethyca
Datadog, Splunk, ELK Stack
GDPRæºæ ã·ã¹ãã ã®ããã®ãã©ã€ãã·ãŒããã³ããŒã¿ã¬ããã³ã¹ããŒã«
GDPRã³ã³ãã©ã€ã¢ã³ã¹ã®éæãšç¶æã®ããã®äœç³»çãªã¢ãããŒã
ã·ã¹ãã å šäœã«ããããã¹ãŠã®å人ããŒã¿ãç¹å®ããããŒã¿ãããŒããããã³ã°ããåŠç掻åãææžåããåŠçã®é©æ³æ§æ ¹æ ãè©äŸ¡ããŸãã
çŸåšã®ã³ã³ãã©ã€ã¢ã³ã¹æ å¢ãè©äŸ¡ããé«ãªã¹ã¯åŠçã«å¯ŸããããŒã¿ä¿è·åœ±é¿è©äŸ¡ïŒDPIAïŒã宿œããæ¹åçã«åªå é äœãä»ããŸãã
åæç®¡çãDSARèªååãããŒã¿ä¿æããªã·ãŒãããã³ãã©ã€ãã·ãŒãã€ãã¶ã€ã³ãã¿ãŒã³ãã¢ããªã±ãŒã·ã§ã³ã«å®è£ ããŸãã
åœå¢ãè¶ãã転éã¡ã«ããºã ãèšèšããæšæºå¥çŽæ¡é ïŒSCCsïŒãå®è£ ããå¿ èŠã«å¿ããŠããŒã¿ããŒã«ã©ã€ãŒãŒã·ã§ã³ãæ§æããŸãã
ãã©ã€ãã·ãŒãã¹ãã宿œããDSARã¯ãŒã¯ãããŒããšã³ãããŒãšã³ãã§æ€èšŒããåæã¡ã«ããºã ãæ€èšŒãã䟵害éç¥ããã»ã¹ããã¹ãããŸãã
ç¶ç¶çãªç£èŠãèªåã³ã³ãã©ã€ã¢ã³ã¹ã¬ããŒããDPOããã·ã¥ããŒããããã³å¹Žæ¬¡ãã©ã€ãã·ãŒããã°ã©ã ã¬ãã¥ãŒãèšå®ããŸãã
EUã察象ãšããäºæ¥ãå±éããäŒæ¥åãã«GDPRæºæ ã·ã¹ãã ãæ§ç¯
GDPRã³ã³ãµã«ãã£ã³ã°ã®è²»çšã¯ãããŒã¿åŠçã®è€éããçŸåšã®ã³ã³ãã©ã€ã¢ã³ã¹ã¬ãã«ã«ãã£ãŠç°ãªããŸããGDPRã®æºåç¶æ³è©äŸ¡ã¯5,000ãã«ããå§ãŸããŸããããªã·ãŒãDPIAsãããã³æè¡çã³ã³ãããŒã«ãå«ãå®å šãªã³ã³ãã©ã€ã¢ã³ã¹å°å ¥ã¯ã15,000ãã«ãã50,000ãã«ä»¥äžã®ç¯å²ã§ãã
GDPRã®æºåç¶æ³è©äŸ¡ã«ã¯2ã3é±éããããŸããããªã·ãŒãæè¡çã³ã³ãããŒã«ãã¹ã¿ããç ä¿®ãå«ãå®å šãªæºæ ã®å®è£ ã¯ãçµç¹ã®èŠæš¡ãšããŒã¿ã®è€éãã«ãã£ãŠ3ã6ã¶æããããŸãã
DPOã¯ãå ¬çæ©é¢ã§ããå Žåãå€§èŠæš¡ã«æ©åŸ®ãªããŒã¿ãåŠçããå ŽåããŸãã¯å人ã系統çã«ç£èŠããå Žåã«å¿ èŠã§ããããšã矩åä»ããããŠããªããŠããDPOãŸãã¯å€éšDPOãµãŒãã¹ãæã€ããšã¯ãã³ã³ãã©ã€ã¢ã³ã¹ãžã®ã³ãããã¡ã³ãã瀺ãããšã«ãªããŸããåœç€Ÿã¯ä»®æ³DPOãµãŒãã¹ãæäŸããŠããŸãã
GDPRã®çœ°éã¯ãæå€§2,000äžãŠãŒãããŸãã¯å šäžç幎é売äžé«ã®4%ã®ããããé«ãæ¹ã«éããå¯èœæ§ããããŸãã眰éã«å ããŠãéåã¯é¢šè©è¢«å®³ãé¡§å®¢ä¿¡é Œã®åªå€±ãããã³ããŒã¿åŠçã®å¶éã®ãªã¹ã¯ã䌎ããŸãã
ã¯ããç§ãã¡ã¯é«ãªã¹ã¯ã®ããŒã¿åŠç掻åã«å¯ŸããŠãData Protection Impact AssessmentsïŒDPIAïŒã宿œããŠããŸããããã«ã¯ããªã¹ã¯ã®ç¹å®ãå¿ èŠæ§ãšåè¡¡æ§ã®è©äŸ¡ãããã³ç·©åçã®ææ¡ãå«ãŸããŸãã
ã¯ããç¶ç¶çãªã³ã³ãã©ã€ã¢ã³ã¹ç£èŠã幎次ã¬ãã¥ãŒãã¹ã¿ããç ä¿®ãæ å ±æŒæŽ©å¯Ÿå¿èšç»ãããã³DSARïŒData Subject Access RequestïŒã®åŠçãæäŸããŠããŸããåœç€Ÿã®ããŒãã£ã«DPOãµãŒãã¹ã¯ç¶ç¶çãªç£ç£ãæäŸããŸãã
ã客æ§ã®ããžãã¹ã«å¿ èŠãªãã©ã€ãã·ãŒã€ã³ãã©ã¹ãã©ã¯ãã£ãæ§ç¯ããŸããããç¡æã®ããŒã¿ãããã³ã°è©äŸ¡ãšãGDPRã³ã³ãã©ã€ã¢ã³ã¹ãžã®æç¢ºãªããŒãããããå ¥æããŠãã ããã