Tag Archives for " CNIL "

CNIL flexible on enforcement of new obligations for first months of GDPR regime

France’s Data Protection Authority, the CNIL, announced last month that in the first months of implementation of the GDPR, it may not sanction beaches of new obligations or rights resulting from the GDPR, such as the right to data portability and impact assessments.

This period of grace, however, requires that the organisations are engaged in the compliance process, are of ‘good faith’ and cooperate with the CNIL. However, if the CNIL detects breaches of well-established data protection principles, it will act immediately.

Source: CNIL flexible on enforcement of new obligations for first months of GDPR regime – Privacy Laws & Business

French DPA takes pragmatic approach to GDPR enforcement

The French data protection authority (‘CNIL’) published, on 19 February 2018, a press release outlining its approach in terms of enforcing compliance with the General Data Protection Regulation (Regulation (EU) 2016/679) (‘GDPR’) from 25 May 2018.

Source: France: CNIL takes ”very pragmatic approach” to GDPR enforcement

French DPA publishes guidelines on connected vehicles

The compliance package has been elaborated in consultation with stakeholders from the automobile sector, businesses in the insurance and telecoms sectors, as well as public authorities, in order to constitute a sectorial reference framework and to ensure that car users enjoy transparency and control in relation to their data.

Source: Connected vehicles: a compliance package for a responsible use of data

WP29 Presidency 2014 – 2018: Track Record 

Over the 4 years, the Working Party was involved in key events and actions such as the CJEU’s Google Spain ruling and operationalizing the right to be forgotten, the invalidation of the Safe Harbor and the adoption of the Privacy Shield, construction to adoption and implementation of the GDPR, key enforcement operations.

Source: WP29 Presidency 2014 – 2018: Track Record | CNIL

French DPA Publishes New Security Guidelines

On January 23, 2018, the French data protection authority (the CNIL) published new guidelines on the security of personal data (updating its previous security guide published in 2010 available in English ), providing practical recommendations in the form of “Do’s and Dont’s” to help businesses implement appropriate measures to protect personal data in compliance with the General Data Protection Regulation (“GDPR”).

Source: FRANCE: CNIL New Security Guidelines

Report on the ethical matters raised by algorithms and artificial intelligence

Public awareness around the role of algorithms and artificial intelligence in our everyday lives has been rising subsequently in the past few months: the role of social media in the U.S. presidential election is an example of such an interest.

Source: How can humans keep the upper hand? Report on the ethical matters raised by algorithms and artificial intelligence

French DPA Publishes a Compliance Pack Regarding Connected Vehicles

On October 17, 2017, the French Data Protection Authority (“CNIL”), after a consultation with multiple industry participants that was launched on March 23, 2016, published its compliance pack on connected vehicles (the “Pack”) in line with its report of October 3, 2016 .

Source: French DPA Publishes a Compliance Pack Regarding Connected Vehicles

CNIL publishes guidance for data processors

On 29 September 2017, the French Data Protection Authority (the CNIL) released a guide for data processors on implementing the obligations laid down in the GDPR. Unlike the draft guidance recently published by the UK Data Protection Authority (the ICO), ‘Contracts and liabilities between controllers and processors‘, the CNIL’s guidance focuses just on processor obligations and is structured around FAQs.

Source: CNIL publishes guidance for data processors

>