Tag Archives for " DPA "

Google escapes Irish data privacy investigation over tracking scandal

Ireland’s data protection commissioner is not currently investigating Google’s data-tracking controversy as the tech giant has not yet officially incorporated its data protection reside. While Google indicated that Ireland was to be its ‘one stop shop’ data protection jurisdiction in the wake of the EU’s new General Data Protection Regulation (GDPR) law, it has not yet finalised this registration process with the Irish DPC’s office.

Source: Google escapes Irish data privacy investigation over tracking scandal – Independent.ie

Highest reported breaches ever according to ICO annual report

UK’s Information Commissioner’s Office (ICO) has recently released its annual report for 2017 – 2018. One of the most obvious impacts of GDPR revieled by the report is the number of breaches reported to the ICO. In 2016-17 2,565 breaches were reported, and 3,311 breaches reported in 2017-18. The annual report covers the period to 31 March 2018 (i.e. before GDPR came into effect) which makes the jump striking.

Source: Highest reported breaches ever according to ICO annual report

India launches investigation on Facebook data breach

CBI has initiated a preliminary enquiry against Cambridge Analytica and Global Science Research for alleged illegal personal data harvesting of Indian personal data. It is alleged that Cambridge Analytica received data from Global Science Research which employed “illegal means” of personal data harvesting of Indians using Facebook.

Source: Facebook data breach: CBI initiates preliminary enquiry against Cambridge Analytica, GSR | India News – Times of India

CNIL goes after smaller firms on GDPR compliance

Google and Facebook may have bullseyes on their backs in Europe, but it’s two mid-sized French startups that received the first warning shots from the General Data Protection Regulation (GDPR) – and that shouldn’t be surprising.

Source: Forget The Duopoly (For Now). It’s The Little Guys Taking Heat On GDPR | AdExchanger

Dutch DPA launches ‘ex officio’ GDPR-compliance investigation

Dutch Data Protection Authority started an “ex officio” investigation into compliance with the EU General Data Protection Regulation in the private sector. It will verify compliance with Article 30 (the data registry) in 30 randomly selected large companies (more than 250 employees) in 10 different sectors: industry, water supply, construction, retail, hospitality, travel, communications, finance, business services, and health care across the Netherlands.

Source: Dutch DPA launches ‘ex officio’ GDPR-compliance investigation

French website publisher fined for violation of the cookie requirements

The French Council of State affirmed the EUR 25,000 fine imposed by the CNIL on Editions Croque Futur (challenges.fr) for non-compliance with French data protection law, and in particular cookie requirements.

This decision is particularly interesting in that it clarifies that browser settings are not always a valid means of consent to cookies, while many cookies policies out there still refer to such browser settings as the only way to control cookies.

Source: FRANCE: Website publisher fined for violation of the cookie requirements

European Data Protection Board issues update after second plenary meeting

Newly minted European Data Protection Board provided an update after it held its second plenary meeting July 4 and 5 about a slate of pressing data protection topics. Top of mind for the EDPB is the state of play of its consistency and cooperation mechanisms now that the General Data Protection Regulation (GDPR) is in effect. EDPB discussed their experiences so far with the one-stop-shop mechanism, the performance of the Internal Market Information System (an IT platform that facilitates exchanges on cross-border issues) as well as compliance questions the EDPB has received since the GDPR’s enactment.

Source: European Data Protection Board issues update after second plenary meeting

DPAs: Full steam ahead at the European Data Protection Board

The GDPR’s cooperation and consistency mechanism will now be put to a test at the European Data Protection Board (EDPB) which is already dealing with more than 20 cross-border cases. DPAs will try to reach the goal of consistent application of the GDPR by issuing opinions and by dispute resolution.

EDOB will issue binding decisions on cases brought to it but it can also proactively examine issues. While it can take decisions by a two-thirds majority, a procedure needs to be found for situations when a national authority prefers not to accept EDPB’s decision.

Source: DPAs: Full steam ahead at the European Data Protection Board – Privacy Laws & Business

Cataloguing GDPR complaints since May 25

A full month has passed since the European Union’s General Data Protection Regulation went into effect on May 25. Are consumers rushing to deluge their local data protection authorities?

To find out, the IAPP reached out to DPAs of each of the 28 member states to check in and discuss how many complaints they had received since May 25 and we are using today’s one-month anniversary of GDPR Day to publish the first look at the data. The results we received varied greatly.

Read full article: Cataloguing GDPR complaints since May 25

1 2 3 20
>