Free tools and resources for Data Protection Officers!

Tag Archives for " DPA "

IBM releases diverse dataset to fight facial recognition bias

The tech giant released a trove of data containing 1 million images of faces taken from a Flickr dataset with 100 million photos and videos.

Researchers at the company hope that these specific details will help developers train their artificial intelligence-powered facial recognition systems to identify faces more fairly and accurately.

Full article: IBM releases diverse dataset to fight facial recognition bias

Dutch Data Protection Authority received record amount of data breach notifications in 2018

Dutch Data Protection Authority received record amount of data breach notifications in 2018. Earlier today, the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) issued a press release stating that it received 20,881 notifications of data breaches in 2018.

In comparison to 2017, the amount of data breach notifications has (more than) doubled.

Source: NETHERLANDS: Dutch Data Protection Authority received record amount of data breach notifications in 2018. Earlier today…

EU data watchdog raises concerns over Facebook integration

Facebook’s plan to merge WhatsApp, Instagram and Facebook Messenger could raise significant data protection concerns, according to the Irish commission that regulates the social network in the EU.

The Data Protection Commission has asked for an urgent briefing with Facebook Ireland so it can assess the proposals, it said in a statement. “The Irish DPC will be very closely scrutinising Facebook’s plans as they develop, particularly insofar as they involve the sharing and merging of personal data between different Facebook companies.

Source: EU data watchdog raises concerns over Facebook integration

Irish DPA asks Supreme Court to uphold ruling in Facebook case

Facebook wants to alter High Court findings on issues concerning the validity of EU-US data transfer channels because it “doesn’t like them” and does not want them put before the Court of Justice European Union (CJEU), the Data Protection Commissioner has told the Supreme Court.

A core issue in Facebook’s appeal is whether there is any legal entitlement to appeal a referral to the CJEU.

Source: Facebook wants to alter findings because ‘it doesn’t like them’, court told

Validity of consent coupled with free online services

The Austrian Data Protection Authority, headed by the chair of the European Data Protection Board (EDPB), provided a clear way forward for advertising-based business models.

Following a complaint against an Austrian newspaper, the Austrian Data Protection Authority decided that the prohibition on making the provision of a service conditional on consent (“coupling prohibition”; Article 7(4) GDPR) can effectively be circumvented by additionally offering a consent-free equivalent service for a reasonable remuneration.

Full article: Validity of consent coupled with free online services – Chair of EDPB opens a path

Small business in Germany hit with €5,000 GDPR fine

A small business in Germany has been issued with a €5,000 fine for inadequate data processing standards, after misplacing one of its contracts, heise online reports.

The problem was identified after a request for personal data was made to the German regulator, in a case that is one of few to result in a fine following the introduction of the General Data Protection Regulation (GDPR) on May 25th 2018.

Source: Small business in Germany hit with €5,000 GDPR fine

Dutch SA initiates exploratory investigation into DPAs

The Dutch Supervisory Authority (Autoriteit Persoonsgegevens, “AP”) recently communicated a press release stating that it reached out to 30 organizations to request information relating to their data processing agreements (DPAs).

Source: THE NETHERLANDS: Dutch SA initiates exploratory investigation into DPAs

Google fined €50 million in France for GDPR breach about consent

France’s Data Protection Authority, the CNIL, has today announced a 50 million euro fine on Google LLC for lack of transparency, inadequate information and lack of valid consent regarding the personalisation of advertisements.

The case was initiated by two associations, None Of Your Business (“NOYB”) and La Quadrature du Net (“LQDN”). LQDN was supported by 10 000 people to refer the matter to the CNIL. The CNIL says that the GDPR “one-stop-shop mechanism” was not applicable as the DPAs consider that Google did not have one main establishment in the European Union.

Source: Google fined €50 million in France for GDPR breach about consent – Privacy Laws & Business

>