fbpx

Download free GDPR compliance checklist!

Tag Archives for " data access "

EU court adviser: data privacy laws should apply in national security cases

The European Court of Justice should uphold its 2016 decision that personal data cannot be seized and held indiscriminately by governments even on national security grounds, the court’s advocate general said in an opinion on Wednesday.

Reacting to four cases in France, Belgium and Britain in which governments called for greater powers to override data privacy, the advocate general, Manuel Campos Sánchez-Bordona, argued that EU law applies.

Source: EU court adviser: data privacy laws should apply in national security cases – Reuters

Dutch Court Decides on Scope of GDPR Right of Access

In late December 2019, the Court of The Hague (Netherlands) published a preliminary reference procedure (see here , in Dutch). The Court was asked to decide on the scope of the right of access under the GDPR.

The Court also pointed out that the GDPR does not grant a right to obtain a copy of documents; it only grants a right to obtain a copy of personal data. In relation to documents that do not contain much personal information, such as the e-mails in question, the court held that it suffices to describe the data they contain.

Source: Dutch Court Decides on Scope of GDPR Right of Access

Talend Report Showcases Low GDPR Compliance Rates for Data Subject Access Requests

Talend’s new survey shows that less than half of all companies and public sector organizations were able to respond to a Data Subject Access Request within the time period stipulated by GDPR.

Media and telecommunications companies also scored very poorly, with only 32% of them responding in a timely manner. Only 46% of retailers are able to respond to Data Subject Access Requests in a timely manner.

Source: Talend Report Showcases Low GDPR Compliance Rates for Data Subject Access Requests – CPO Magazine

Brexit Party under investigation for ‘failing to hand over personal data’

An investigation into Nigel Farage’s party has been launched by the Information Commissioner’s Office.

The Information Commissioner’s Office (ICO) launched the investigation in response to complaints the Brexit Party had failed to answer requests for data.

Source: Brexit Party under investigation for ‘failing to hand over personal data’ | Science & Tech News | Sky News

Alexa users can now disable human review of voice recordings

Amazon has given Alexa users the option to disable human review of their voice recordings, and committed to greater clarity about its use of the strategy in future, but says it will not follow Google and Apple in halting the practice altogether in Europe.

Echo owners, and other users of the company’s virtual voice assistant, can turn off human review in the Alexa privacy page by disabling a setting labelled “help improve Amazon services and develop new features”.

Source: Alexa users can now disable human review of voice recordings | Technology | The Guardian

Amazon’s Ring Is a Perfect Storm of Privacy Threats

Recent reports show that Ring has partnered with police departments across the country to hawk this new surveillance system—going so far as to draft press statements and social media posts for police to promote Ring cameras.

This creates a vicious cycle in which police promote the adoption of Ring, Ring terrifies people into thinking their homes are in danger, and then Amazon sells more cameras.

Source: Amazon’s Ring Is a Perfect Storm of Privacy Threats | Electronic Frontier Foundation

DSAR test reveals huge data breach potential

A phoney data subject access request (DSAR) made by a woman’s partner to companies in the UK and the US prompted a return of personal data from 25% of the firms contacted.

The security specialist making the request leveraged the terms of the GDPR to make his claim. He got in touch with dozens of companies on both sides of the Atlantic, stating in each case that he wanted information held on his fiancée. One of the data returns held his fiancée’s criminal record check.

Source: DSAR test reveals huge data breach potential

German court decides on the scope of GDPR right of access

The Supervisory Authority of Hesse region stated that the term “copy” in Art 15 GDPR should not be understood literally but rather in the sense of a “summary”.

This interpretation appears to conflict with an earlier decision of the Labor Appeals Court of Stuttgart which ordered an employer to provide actual copies of all information held by the company.

More recently, the Appeal Court of Cologne held that the customer of an insurance company is entitled to access all personal data pertaining to him and processed by the company, including any internal notes regarding conversations between company employees and the customer.

Source: German court decides on the scope of GDPR right of access

UK decision to deny EU citizens access to data challenged in court

The government has been taken to court over its decision to deny European citizens the right to access data the Home Office holds on individuals in immigration cases.

In a high court judicial review, campaigners for EU citizens allege that a clause in the Data Protection Act 2018 unlawfully excludes them from rights they would otherwise hold to access private data held by third parties.

Source: UK decision to deny EU citizens access to data challenged in court | UK news | The Guardian

1 2 3 6
>