ComplyCloud

Did you know that deployers of AI systems shall take measures to ensure a sufficient level of AI literacy of their staff and other persons working with AI systems on their behalf?📚 To ensure AI literacy among these employees, you should take into account their technical knowledge, experience, education, and training and the context in which they use AI systems. You should also consider the people or groups of people the AI systems will be used on. If you want to make sure that you and your employees use AI in a responsible way, you're more than welcome to check out our ComplyHero course on responsible use of AI🏅 The course is relevant for any professional - whether you work in logistics, product development, or marketing. And we offer it in both Danish and English👇 https://lnkd.in/dRM75SYt #ai #artificialintelligence #aiact #gdpr

Do you know the GDPR roles of your data vendor and you? This is important to know because it shows your GDPR responsibilities related to your vendors. Your vendor can be a data processor, an independent data controller, or a joint data controller. And their role reflects whether you should have a GDPR agreement and if so, which one✍️ For data processors, you need a data processing agreement (DPA) while for joint controllers you need an agreement on joint controllership. Yes, it can be tricky... That's why you might be happy to hear that our in-house GDPR expert Emil Galletta Rene got a (belated) Christmas gift for you: A blog post where he takes you through the different ‘GDPR hats’ your supplier and your organization can wear🧢 Find it in both English and Danish here👇 https://lnkd.in/dwHqWT4e #gdpr #dataprocection #dataprocessor #datacontroller

Did you know that we can expect to see the Danish NIS2 law for the energy sector come into effect on March 1, 2025?📅 This means that the effective date of the law has been postponed as it was first expected to come into force on January 1, 2025. The main difference between the law for the energy sector and the general NIS2 law is physical security requirements. These are security measures designed to prevent unauthorized access to physical spaces, resources, and information, such as alarm systems and video surveillance. If you need help navigating the NIS2 rules, feel free to reach out to our experts - for free👇 https://lnkd.in/dxTZhuDU #nis2 #nis2directive #cybersecurity #itsecurity #compliance

Don't get us wrong: We're very grateful for Christmas gifts from our families and friends. But nothing tops Christmas gifts in the form of feedback and stardust from companies and customers. Especially when it comes to the feedback our guest speakers Mathias Tøndering from Umbraco and Michael Mather from Odense Renovation, as well as our CEO Martin Folke Vasehus and Customer Success Manager Ibo Terki, got after our event on NIS2 in practice🎁 Besides the kind words you see below, we also found out that: 💡 80% of the respondents joined to understand the NIS2 requirements better. ✅ 60% of the respondents came to learn more about our NIS2 solutions. For that reason, we were happy to see that 100% said they feel better equipped for their ongoing or upcoming NIS2 work. The overall rating of our NIS2 event was 4.2 out of 5 stars⭐ Can't think of a better way to start our Christmas holidays. And we also hope that you enjoy yours🎄🎊 #nis2 #nis2compliance #nis2directive #christmas

Another 3 EU countries have just implemented NIS2 in national legislation, bringing us to 9 countries in total🌍 If NIS2 hasn't come into effect in 'your' country yet, you still need to be aware of whether it has come into effect in other EU countries where you may operate. Then, you need to comply with the national NIS2 law there💡 See below to know all of the 9 EU countries where the national NIS2 has been implemented👇 #nis2 #nis2directive #cybersecurity #compliance

We're #hiring a new Law Student in Copenhagen Municipality, Capital Region of Denmark. Apply today or share this post with your network.

We're #hiring a new Legal Counsel/Advokatfuldmægtig in Copenhagen Metropolitan Area. Apply today or share this post with your network.

This Wednesday, our office was buzzing more than usual as 30+ legal and compliance professionals joined our AI workshop to understand the obligations of the AI Act and how they can use our solution to comply with them🧑💻 We were equally happy and honored to see all seats filled at the workshop - and also to know more about what's on your mind 'out there' when it comes to the use of AI. One of the questions that came from the audience is one we generally get: "Is my company a provider or deployer of AI, if we integrate an AI model (like OpenAi) into 'our' system?" You become a provider in this case because you have 'manipulated' or prompted the AI model yourself and put the general-purpose AI system on the market under your own brand name or trademark. Even if you only use it internally in the organization💡 Huge thanks to the many attendees for showing curiosity and engagement through two AI-dedicated hours with our in-house legal and AI Act experts Martin Folke Vasehus and Frederik Them Pedersen. #aicompliance #aiact #artificialintelligence #ai

Are you closely following the case on the cloud that became a thundercloud?🌩️ Right now, the European Commission and Microsoft are in conflict with the European Data Protection Supervisor (EDPS) on the use of Microsoft 365 cloud services. What this case is about - and what it could mean for your business - is what our in-house legal consultant Ulrika C. Skadhauge delved into in her latest webinar. She covered the CJEU's perspective on several key issues that businesses, using cloud, are currently grappling with by giving her analysis of: 🌎 When does using a cloud-based tool become a third-country transfer? ✍️ How precisely should the personal data and purposes of processing be described in a data processing agreement? 📉 What role does the general EU principle of proportionality play when data protection authorities make decisions with fatal consequences for European businesses? We've published and updated Ulrika's blog post on the topic with her key takeaways from the webinar - read the blog post if you couldn't join her on screen👇 In English: https://lnkd.in/dh5BYX4u In Danish: #gdpr #dataprotection #datatransfer #microsoft365

Some organizations have come a long way with their compliance work under NIS2. Umbraco and Odense Renovation are among them. We invited both of them to join us for a panel talk at our event last week to inspire other organizations - whether they're directly or indirectly affected by NIS2 - through our guests' practical compliance work and progress✅ Umbraco and Odense Renovation shared many recommendations and golden nuggets during the event with us. Now, we'll share 3 of them with you: 1️⃣ Ensure awareness among management and board members: It's crucial to ensure NIS2 awareness among management and board members as they can be held personally liable for damages. For that reason, you should put IT security as a separate topic on the agenda at every board meeting. This is both to make sure that the topic is unavoidable and to emphasize its importance. 2️⃣ Engage employees across the organization: Reaching compliance goes beyond the organizational or political level; it also involves the employees 'in the field.' You should reach out to your colleagues in Marketing, Sales, and other departments and give them relatable examples of how they can help lift the compliance level in the organization. It's all about making IT security 'human' and engaging. One way to do this is to mix security surveys with competitions to get a higher response rate. 3️⃣ Be curious about what specific documentation customers are looking for: What do you do if customers ask for NIS2 documentation when there's no official certificate? Instead of answering 100+ questions about your security, the most effective thing you can do is to set up a meeting or a phone call with your customers to talk about what they really want. Such as documentation on your supply chain security, internal security policies, or something third. Then, you can give them the specific documentation they need without the request being a time-consuming task. Huge thanks to IT Manager Mathias Tøndering at Umbraco and Head of IT and Digitisation Michael Mather at Odense Renovation for sharing these valuable learnings👏 And thanks to the attendees who joined us for a lively discussion and Q&A session on NIS2 compliance in practice. If you missed out on the NIS2 event and the success stories from practice, you can find and get inspired by them here👇 https://lnkd.in/d3SuCqvm #nis2 #nis2directive #itsecurity #cybersecurity #compliance