This video is normally available to paying customers.
You may unlock this video for FREE. Enter your email address for instant access AND to receive ongoing updates and special discounts related to this topic.
Overview: Legitimate interests is a flexible lawful basis for processing, but it may not always be the ideal choice.
Appropriateness: It's suitable when using personal data in ways individuals would expect with minimal privacy risks.
Procedure: Before opting for Legitimate interests, conduct a balancing test to ensure your interests don’t override those of the individual.
Resource: Access a Legitimate Interest Assessment document in the course's download area.
Examples: The GDPR cites client or employee data, marketing, fraud prevention, IT security, and intra-group transfers as potential legitimate interests.
Reminder: Individuals always retain the right to object to marketing activities.
Criteria: Legitimate interests for marketing require showing proportionate use of personal data with minimal privacy impact.
Guidance: If potential objections are likely, consider an alternative lawful basis for marketing.
Regulatory Compliance: Ensure compliance with Privacy and Electronic Communications Regulations even when using Legitimate Interests for marketing.
Documentation: Document decisions and complete a legitimate interest assessment for processing activities.
