fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " compliance "

As Apple stakes out an aggressive pro-privacy stance, Google occupies middle ground

The ad industry has been bracing for more privacy-focused upheaval in the coming months, from lawmakers and data regulators or from privacy-zealous browsers. As Google has put forward alternative plans for a privacy-focused and ad-funded web, it has also been asking the industry for feedback. This is a markedly different approach to Apple’s muscular stance of ultimate user privacy by default.

Google, as a predominantly ad-funded business with a lot more skin in the game, is revealing itself to be much more collaborative with the industry as it’s forming its approach. , Google has been exploring what restricted third-party cookie use in Chrome would look like by releasing industry research on how it would impact publisher revenue, laying out proposals for building a more private web, and using machine learning to manage ad frequency.

Full article: As Apple stakes out an aggressive pro-privacy stance, Google occupies middle ground – Digiday

Data Protection Commissioner investigating micro-targeting on social media

The Data Protection Commissioner Helen Dixon has said her office is conducting a number of investigations into the micro-targeting of individuals on large social media platforms as it raised issues of compliance with new General Data Protection Regulation rules.

Current investigations are open into the use of platforms, data brokers, and ad exchanges. Micro-targeting individuals with specific content has the potential of amplifying the harmful effects of disinformation. Commissioner hopes to conclude all investigations by next year.

Source: Data Protection Commissioner investigating micro-targeting on social media

Data Protection Commission engaging with Revolut as a “matter of urgency”

The Irish Data Protection Commission (DPC) has said that it will be engaging with financial technology company Revolut as “a matter of urgency” over their new privacy policy and cookies policy changes Revolut announced this week.

Revolut’s new privacy policy means that users will have their data shared with social media and analytics companies for marketing purposes and also with credit bureaus, unless they actively opt-out.

Source: Data Protection Commission engaging with Revolut as a “matter of urgency” over privacy changes | JOE is the voice of Irish people at home and abroad

German Privacy Regulators Flooded with Google Analytics Complaints

The data protection authorities of the German states are being flooded with complaints, approximately 200,000 in number, regarding deployment of the Google Analytics service on websites in a manner which allegedly is in violation of GDPR.

At issue is whether deploying Google Analytics is possible without acquiring the consent of the end user prior to deploying the Google Analytics cookie on the end user’s device.

Source: German Privacy Regulators Flooded with Google Analytics Complaints

Regulating Facial Recognition Tech – Where Are We Now?

While there are clearly now multiple efforts to curtail the use of facial recognition technology (FRT) in the public realm, the reality is that the genie is already out of the bottle and there is no way to put it back.

The efforts above range from limited bans within the public sector, to reviews of new implementations of the tech, to specific court cases against police use of FRT. In short, it’s a patchwork of efforts, and there are huge gaps between them. Many examples also tend to focus on State-backed projects, rather than in the private sector – which is also experimenting with the tech, often in the public domain.

Meanwhile, the technology and its use is still rapidly spreading around the world, and there remains as yet no fully tested national position on its use in countries such as the US and UK.

Full article: Regulating Facial Recognition Tech – Where Are We Now? – Artificial Lawyer

Irish data protection commissioner set to issue decisions on Twitter and Whatsapp probes by end of year

The Irish data protection commissioner expects to issue decisions on investigations into Twitter and Whatsapp by the end of the year, a spokeswoman has said.

However, the effect of any sanction or fine, if issued, would not occur for “months” after that due to statutory examination processes.

Helen Dixon’s office concluded its investigation several weeks ago and is formulating draft decisions, possibly with the inclusion of a sanction, fine or regulatory order for Whatsapp and Twitter to change their own processes.

Source: Irish data protection commissioner set to issue decisions on Twitter and Whatsapp probes by end of year – Independent.ie

The Polish supervisory authority imposed first administrative fine on a public entity

The President of the Personal Data Protection Office (“The President of the Office”) imposed first administrative fine of PLN 40,000 on a public entity for failure to comply with the GDPR.

The reason for imposing the fine was that the mayor of the city did not conclude a personal data processing agreement with the entities to which he transferred data.

Apart from the financial penalty, the President of the Office also ordered the controller to take action to remedy the relevant infringements within 60 days

Source: The Polish supervisory authority imposed first administrative fine on a public entity

Irish Department of Social Protection accused of ‘mass surveillance’

A complaint has been made to the Data Protection Commissioner accusing the Department of Employment Affairs and Social Protection of engaging in “mass surveillance” with regard to the collation of data from the free travel pass variant of the Public Services Card.

The complainant, Martin McMahon, from Dublin, noted when travelling with his own travel pass that his rights were being breached under the General Data Protection Regulation as his movements were being ‘recorded’.

Source: PSC fall-out: Department of Social Protection accused of ‘mass surveillance’

Facebook WhatsApp, Twitter investigations in Ireland reach conclusion

Ireland’s Data Protection Commission has concluded investigations into Facebook’s WhatsApp and Twitter over possible breaches of EU data privacy rules.

The investigations will now move into the decision-making phase. During this next phase, Ireland’s chief data regulator, Helen Dixon, will issue draft decisions, which are expected to come toward the end of the year.

Source: Facebook WhatsApp, Twitter investigations in Ireland reach conclusion

Only 28% Of Firms Are Complying With GDPR

The Capgemini Research Institute reports that only 28% of European firms have achieved full adherence with the law that took effect in May 2018.

U.S. firms are closest — 35% were compliant as of June of this year.

However, compliant firms say they are enjoying improved customer trust, brand image and employee morale. In addition, they have benefitted from improvements in their IT systems and cybersecurity practices.

Source: Only 28% Of Firms Are Complying With GDPR: Study 09/30/2019

1 2 3 54
>