fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " DPA "

IAB Europe refuses to answer Irish Data Protection Commission

IAB Europe refuses to answer questions from Irish Data Protection Commission arising from formal GDPR complaint by Brave’s Dr Ryan against IAB Europe’s “forced consent” and consent walls.

The Irish Data Protection Commission informed Dr Johnny Ryan of Brave, the private web browser, that IAB Europe has ignored its questions concerning his GDPR complaint against IAB Europe’s unlawful cookie wall.

Source: IAB Europe refuses to answer Irish Data Protection Commission

Joint statement on global privacy expectations of the Libra network

On August 8, representatives of the global community of data protection and privacy enforcement authorities issued a joint statement on global privacy expectations of the Libra network.

Data protection authorities may individually follow up with Libra with more specific questions as the proposals and service offering develops.

Source: Joint statement on global privacy expectations of the Libra network | European Data Protection Supervisor

ICO Launches Public Consultation on New Data Sharing Code of Practice

On July 16, 2019, the UK’s Information Commissioner’s Office (ICO) released a new draft Data sharing code of practice, which provides practical guidance for organizations on how to share personal data in a manner that complies with data protection laws.

The draft Code focuses on the sharing of personal data between controllers, with a section referring to other ICO guidance on engaging processors. The draft Code reiterates a number of legal requirements from the GDPR and DPA, while also including good practice recommendations to encourage compliance.

Source: ICO Launches Public Consultation on New Data Sharing Code of Practice

EU privacy ruling against Facebook to come by end 2019

European privacy investigators expect to complete a lengthy probe into whether Facebook violated the bloc’s tough data protection rules by the end of the year, according to the Irish official who is leading the inquiries.

Decision expected to focus on how WhatsApp shared users’ data with the social networking giant.

Source: EU privacy ruling against Facebook to come by end 2019 – POLITICO

Italian DPA Issues Judgment Concerning ‘Right to be Forgotten’

On July 22, 2019, the Italian supervisory authority for data protection (Garante) issued a judgment involving the so-called “right to be forgotten”.

The Garante held that, in accordance with Article 21 of the GDPR, the data subject has the right to object to the processing of personal data on the grounds of his or her particular situation.

On that basis, Google is required to stop the processing of the personal data unless it can demonstrate compelling legitimate grounds.

Furthermore, the Garante made clear that the principles of data protection apply to any information concerning an identified or identifiable natural person. Thus “right to be forgotten” applies to any searches, not exclusively to searches by individual’s name.

Source: Italian Supervisory Authority Issues Judgment Concerning ‘Right to be Forgotten’

Cookies and other tracking devices: the CNIL publishes new guidelines

Without waiting for the future ePrivacy regulation, which is currently under discussion at the European level and which is not likely to come into force in the short term, the CNIL has decided to update its reference framework. In particular, it was necessary to repeal the 2013 recommendation, which was not compatible with the new provisions of the GDPR.

Full article: Cookies and other tracking devices: the CNIL publishes new guidelines

EU working group to harmonize sanctions

Sweden is entering as one of the chairmen of the EU working group to work for harmonization of sanctions according to the Data Protection Regulation, GDPR.

The guidelines for harmonized penalties within the EU are expected to be completed next year. The national inspection guidelines will be revised when the common EU guidelines have been adopted.

Source: The Data Inspectorate leads the EU working group on sanctions – the Data Inspectorate

ICO opens consultation on the draft data sharing code of practice

The updated draft code of practice will explain and advise on changes to data protection legislation where these changes are relevant to data sharing. It will address many aspects of the new legislation including transparency, lawful bases for processing, the new accountability principle and the requirement to record processing activities.

The updated draft code is now out for public consultation and will remain open until Monday 9 September 2019.

You can respond to the consultation via our online survey, or you can download the document below and email datasharingcode@ico.org.uk.

Source: ICO consultation on the draft data sharing code of practice | ICO

Whistleblower data breach reports almost triple after GDPR crackdown

Whistleblower reports over data breaches have almost tripled over the past year since the introduction of GDPR.

Reports from whistleblowers over data protection surged by 175% to 379 in the year to May 2019, from 138 a year earlier, according to research from City law firm RPC.

The firm said that the introduction GDPR in May 2018 has made people more vigilant over the handling of personal data, increasing the number of reports to the Information Commissioner’s Office (ICO).

Source: Whistleblower data breach reports almost triple after GDPR crackdown

ICO publishes annual report

UK’s data protection authority – Information Commissioner’s Office – has released its annual report.

Highlights from 12 months to 31 March 2019 include:

  • Data protection complaints received by the ICO increased from 21,019 in 2017/18 to 41,661 in 2018/19
  • Helping organisations, small or large, embed the GDPR and DPA 2018
  • Preparation of statutory codes focusing on age appropriate design, data sharing, direct marketing, and data protection and journalism.
  • Using new powers of inspection – issuing 11 assessment notices in conjunction with our investigations into data analytics for political purposes, political parties, data brokers, credit reference agencies and others
  • 2018/19 was a record-breaking year of monetary penalties under the DPA 1998.

Source: ICO publishes annual report covering an ‘unprecedented’ year | ICO

>